Computer Security
[EN] securityvulns.ru no-pyccku


New local NT attack - TOCTOU (Time-Of-Check-to-Time-Of-Use race conditions)
updated since 03.01.2004
Published:12.05.2010
Source:
SecurityVulns ID:3342
Type:local
Threat Level:
6/10
Description:If service hooks are used for argument filtering, race conditions are possible between argument check and actual sytem call.
Original documentdocumentMatousec - Transparent security Research, KHOBE - 8.0 earthquake for Windows desktop security software (12.05.2010)
 documentAndrey Kolishak, TOCTOU with NT System Service Hooking (03.01.2004)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod