Windows

Patch it baby, patch it.

Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919)
Download M$06-001

Obsidian is a so called non-intrusive debugger for NT systems. It does not use the Win32 Debugging API for debugging purposes therefore Obsidian makes it possible to attach and detach from a running process transparently - normally a process will die along with the debugger. Check out Obsidian: deneke.biz for further details.

Related work:
Gemini Lite: A Non-intrusive Debugger for Windows NT

Shortcuts for command prompt:

UP/DOWN ARROWS            Recall commands
ESC                       Clears command line 
F7                        Displays command history
ALT+F7                    Clears command history
F8                        Searches command history
F9                        Selects a command by number
ALT+F10                   Clears macro definitions

M$ released Security Bulletin MS05-054 which resolves several newly-discovered vulnerabilities in M$ IE.
See File Download Dialog Box Manipulation Vulnerability (CAN-2005-2829), HTTPS Proxy Vulnerability (CAN-2005-2830), COM Object Instantiation Memory Corruption Vulnerability (CAN-2005-2831) and Mismatched Document Object Model Objects Memory Corruption Vulnerability (CAN-2005-1790) for details.

I updated the update pack for Windoze XP SP2..

I'm not sure if I should laugh or cry.. but I think it's better to laugh on it. :oP

Yeah, I know you do not know what I'm talking about - I speak about a recently posted "advisory" on Bugtraq (Bugtraq: securityfocus.com) with the title Microsoft Windows CreateRemoteThread Exploit.

Maybe somebody should tell this guy that Windoze has several privileges and more importantly security descriptors. That means that nobody is able to call OpenProcess() on processes which do not belong to him without having the SeDebugPrivilege or rather be able to gaining it. By default only Administrators own this mighty privilege and an Administrator is not limited to anything therefore it's bullshit to claim that it's a exploit to be able to use OpenProcess() and CreateRemoteThread().

To open a handle to another another process and obtain full access rights, you must enable the SeDebugPrivilege privilege. For more information, see Changing Privileges in a Token.

MSDN: OpenProcess()

M$ released the Bulletin MS05-053 to resolve some latley discovered vulnerabilities in the rendering of Windows Metafile (WMF) and Windows Metafile (WMF) image format. See CAN-2005-2123, CAN-2005-2124 and EMF file DOS vulnerability for details.

Therefore I updated the update pack for Windoze XP SP2..

holy father (hf) the author of the famous Hacker Defender (hxdef) rootkit for Windoze NT systems offers a new driver coding tutorial on his site (http://hxdef.org/knowhow.php) . He plans to release a new part of the tutorial once a week for a while (circa 12 weeks IIRC). This tutorial is really worth reading for all people who are interested in this topic because this kind of information is rarely found in such great manner and this guy definitely knows about what he talks.