Hosting Provided By

Re: Next generation malware: Windows Vista's gadget API

From: Todd Manning <sflist(at)digitaloffense.net>
Date: Thu Sep 13 2007 - 13:46:35 EDT

On Sep 13, 2007, at 04:16 AM, Tim Brown wrote:

> A paper has just been released on the Windows Vista's gadget API. The
> abstract is as follows:
>
> Windows has had the ability to embed HTML into it’s user interface
> for many
> years. Right back to and including Windows NT 4.0, it has been
> possible to
> embed HTML into the task bar, but the OS has always maintained a
> sandbox,
> from which the HTML has been unable to escape. All this changes
> with Windows
> Vista. This paper seeks to inform system administrators, users and the
> wider community on both potential attack vectors using gadgets and the
> mitigations provided by Windows Vista.
>
> The full paper can be found at http://www.portcullis-security.com/
> 165.php.
>

Good paper; Since this is out there I figure I'll forward the much shorter article I wrote that details an attack against the contact gadget, which was patched last month.

https://strikecenter.bpointsys.com/articles/2007/08/26/vista-gadget- patches-in-ms07-048 Received on Thu Sep 13 14:31:37 2007

This message: [ Message body ]
Next message: Raphael Marichez: "[ GLSA 200709-02 ] KVIrc: Remote arbitrary code execution"
Previous message: Tim Brown: "Next generation malware: Windows Vista's gadget API"
In reply to: Tim Brown: "Next generation malware: Windows Vista's gadget API"
Next in thread: avivra: "RE: Next generation malware: Windows Vista's gadget API"
Reply: avivra: "RE: Next generation malware: Windows Vista's gadget API"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:15:29 EDT