-
-
[求助]如何判断Crash是否可以进一步利用
-
发表于:
2013-7-26 14:33
2991
-
有个Crash,在Malloc时出现问题。
===========================================================
VERIFIER STOP 00000004: pid 0x844: extreme size request
01D50000 : Heap handle
8D069412 : Size requested
00000000 :
00000000 :
===========================================================
其中 Size可控。如何进一步分析是否可利用呢
# ChildEBP RetAddr Args to Child
00 0c2ff748 7c974a15 8d069412 01d50000 01d50000 ntdll!DbgBreakPoint
01 0c2ff760 7c989d4c 00000004 7c98a024 01d50000 ntdll!RtlApplicationVerifierStop+0x160
02 0c2ff7dc 7c98cee6 01d50000 01001002 8d069412 ntdll!RtlpDebugPageHeapAllocate+0x43
03 0c2ff860 7c969564 01d50000 01001002 8d069412 ntdll!RtlDebugAllocateHeap+0x2d
04 0c2ffa90 7c938f01 01d50000 01001002 8d069412 ntdll!RtlAllocateHeapSlowly+0x44
05 0c2ffcc4 78ab0269 01d50000 01001002 8d069412 ntdll!RtlAllocateHeap+0xe64
06 0c2ffce4 786ab327 8d069412 8d069412 0c2ffdc0 MSVCR100!malloc+0x4b
07 0c2ffcfc 092cda1c 8d069412 8d069412 0c2ffdc0 mfc100u!operator new+0x33
WARNING: Stack unwind information not available. Following frames may be wrong.
[招生]科锐逆向工程师培训(2024年11月15日实地,远程教学同时开班, 第51期)