Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-15723

Kernel stack exhaustion when running SEH in NtFindAtom()

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Untriaged
    • Priority: Major
    • Resolution: Unresolved
    • Fix Version/s: None
    • Component/s: NTCore
    • Labels:
      None

      Description

      The problem has been found by fuzzing the NtFindAtom() API using my fork of ROCALL, using: ROCALL.EXE -sc 80 -pc 65540 .
      An EXCEPTION_DOUBLE_FAULT (Trap08) is emitted, which is best debugged using this local commit (since Trap08 has a TSS frame).

      See the attached debug log.

      Problems happen when RtlpExecuteHandlerForException() is called with a NULL RegistrationFrame->Handler for whatever reason (corrupted stack?)

      Cc Timo Kreuzer and ThFabba.

        Attachments

          Activity

            People

            • Assignee:
              bug zilla Bug Zilla
              Reporter:
              hbelusca hbelusca
            • Votes:
              3 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated: