Dear Debasis, DM> I tested this earlier, SendMessage() / SetDlgItem() / SetWindowText() DM> doesn't work for the current version of ZA Products (ZA Pro / Internet Sec DM> Suit). I am not sure we are speaking about the same attack. When I was speaking about SendMessage() I was refering to the presentation at CCC2003, i.e shelling IE simulating a user through SendMessage() Api.
DM> This helps preventing the most wellknown windows local attack - Shatter DM> Attack. AFAIK, it does not, the Shatter Attack doesn't necessarely rely on SendMessage(), not to mention a driver shouldn't open a window at all (not react to F1 messages either) <- if you read this and are a vendor check for this.. gives SYSTEM rights occasionaly. (through browse -> cmd.exe) DM> However, I still can see a way out for their latest product... Will be DM> updated soon. Looking forward to it :) -- Regards, Thierry Zoller mailto:[EMAIL PROTECTED] _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
