Circumventing SRP and AppLocker by design, with LoadLibraryEx - Page 5

J_L · #**101** September 28th, 2011, 07:50 PM

Thanks as well. Can't believe I forgot to add it to the list.

MrBrian · #**102** October 10th, 2011, 01:22 AM

Planned hotfix release is November 3 - see http://www.mountknowledge.nl/2011/01...ord-and-excel/.

1chaoticadult · #**103** October 10th, 2011, 08:30 AM

Thanks for the update Mr. Brian.

#**104** October 10th, 2011, 10:06 AM

Good news, thanks MrBrian

AlexC · #**105** October 12th, 2011, 05:03 PM

Good news!

Just to clarify, that Hotfix will be included in Windows Update?
thanks

Edit
Just did the simple test described here: http://www.mountknowledge.nl/2011/01...ord-and-excel/

Althought the .exe is not allowed by SRP (not whitelisted in parental controls), it was able to run!

m00nbl00d · #**106** October 12th, 2011, 06:03 PM

It makes us want to slap whoever thought of that "design", right?

I wonder if whoever came with that idea was eating some magic mushrooms.

AlexC · #**107** October 12th, 2011, 06:16 PM

Lol! Thats right!

This time i repeated the process with a .exe that requires admin. privileges and it was unable to run. I got the message:
"CreateProcessAsUser failed: 740"

m00nbl00d · #**108** November 2nd, 2011, 10:50 AM

One more day, folks! Just on more day!!!

-edit-

I suppose I was wrong... It's past half day of 04-11-2011, and still nothing. I wonder if it's still day 3 in US?

I wonder if this is going to happen at all, or if they just prefer to let the "backdoor" be? lol

m00nbl00d · #**109** November 4th, 2011, 08:58 PM

Is this damn thing for real or simply a joke? Are you familiar with any official information from Microsoft stating they're going to fix it?

It's already day 5, and I'm sure the U.S is only like eight hours behind, so... is this actually for real or was it simply some stupid joke?

AlexC · #**110** November 5th, 2011, 08:10 PM

I'm also waiting...

RichieB2B · #**111** November 9th, 2011, 08:23 AM

It seems KB370118 was just an internal fix number. It has just been released as KB2532445 at http://support.microsoft.com/kb/2532445. The hotfix is available upon request (see link at top of the article).

This fix almost got delayed again, because of a conflict with another hotfix to the kernel. Luckily KB2532445 drew the shortest straw and was released first.

Zorak · #**112** November 9th, 2011, 04:49 PM

Thanks RichieB2B

Will give the hotfix a go once I've bedded down the latest round of Windows Updates.

Cheers.

m00nbl00d · #**113** November 9th, 2011, 09:48 PM

Thanks...

Did any systems blow up already after applying the hotfix?

#**114** November 9th, 2011, 11:06 PM

Quote:

Originally Posted by m00nbl00d

Did any systems blow up already after applying the hotfix?

Come on m00nbl00d, I'd have thought you'd be on this like bees to honey, you were so impatiently waiting for it

m00nbl00d · #**115** November 9th, 2011, 11:12 PM

Quote:

Originally Posted by wat0114

Come on m00nbl00d, I'd have thought you'd be on this like bees to honey, you were so impatiently waiting for it

I won't be checking my e-mail any time soon. I'm lazy to switch user accounts, right now. I'm on my restricted user account to access the web, in general. I have another user account for accessing my e-mail.

So, did you blow up you computer?

#**116** November 9th, 2011, 11:16 PM

Quote:

Originally Posted by m00nbl00d

So, did you blow up you computer?

Too chicken to try it on the host machine yet

Will try the vm first and let you know tomorrow after I run it for a while.

#**117** November 10th, 2011, 07:12 PM

Quote:

Originally Posted by wat0114

Too chicken to try it on the host machine yet

Will try the vm first and let you know tomorrow after I run it for a while.

installed on the vm last night, no issues earlier today, so I installed on the host and all is fine so far, althtough no guarantees something won't eventually surface. You might want to image your system before applying the patch if that's what you're into

Zorak · #**118** November 11th, 2011, 03:12 AM

Thanks wat0114 for being the crash test dummy

#**119** November 11th, 2011, 08:41 AM

LOL! you're welcome

1chaoticadult · #**120** November 11th, 2011, 12:35 PM

Just looked at this thread again lol. About time Microsoft released it.

Time to install. Good to hear you didn't have any issues wat.

m00nbl00d · #**121** November 11th, 2011, 12:58 PM

Quote:

Originally Posted by 1chaoticadult

Just looked at this thread again lol. About time Microsoft released it.

Time to install. Good to hear you didn't have any issues wat.

So, you're going to be the second lab rat...

We need a third one...

#**122** November 11th, 2011, 01:43 PM

Quote:

Originally Posted by m00nbl00d

So, you're going to be the second lab rat...

Quote:

We need a third one...

Why thank you, m00nbl00d!

Quote:

Originally Posted by 1chaoticadult

Good to hear you didn't have any issues wat.

Still waiting with trepidation, but so far so good

1chaoticadult · #**123** November 11th, 2011, 03:43 PM

Quote:

Originally Posted by m00nbl00d

So, you're going to be the second lab rat...

We need a third one...

Yep

So far the hotfix is working without issues.

AlexC · #**124** November 13th, 2011, 08:24 AM

Working fine here either.

Joeythedude · #**125** January 3rd, 2012, 06:53 PM

Does anyone know if this has been released through Windows Update ?

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search