Skip to content

Commit

Permalink
added arbirtrary memory read/write funcs
Browse files Browse the repository at this point in the history
  • Loading branch information
VoidSec authored Jul 29, 2022
1 parent 4234fd2 commit ce7d9d4
Showing 1 changed file with 47 additions and 1 deletion.
48 changes: 47 additions & 1 deletion DriverBuddyReloaded/vulnerable_functions_lists/winapi.py
Original file line number Diff line number Diff line change
Expand Up @@ -213,8 +213,54 @@
# OemToCharW
######################################################
# These functions can allow arbitrary memory read/write
"MmMapIoSpace",
"Mm",
# MmAdvanceMdl
# MmAllocateContiguousMemory
# MmAllocateContiguousMemoryEx
# MmAllocateContiguousMemorySpecifyCache
# MmAllocateContiguousMemorySpecifyCacheNode
# MmAllocateContiguousNodeMemory
# MmAllocateMappingAddress
# MmAllocateMappingAddressEx
# MmAllocateMdlForIoSpace
# MmAllocateNodePagesForMdlEx
# MmAllocatePagesForMdl
# MmAllocatePagesForMdlEx
# MmBuildMdlForNonPagedPool
# MmFreeContiguousMemory
# MmFreeContiguousMemorySpecifyCache
# MmFreeMappingAddress
# MmFreePagesFromMdl
# MmGetMdlByteCount
# MmGetMdlPfnArray
# MmGetSystemAddressForMdl
# MmGetSystemRoutineAddress
# MmGetSystemRoutineAddressEx
# MmIsDriverSuspectForVerifier
# MmIsDriverVerifying
# MmIsDriverVerifyingByAddress
# MmLockPagableCodeSection
# MmLockPagableDataSection
# MmMapIoSpace
# MmMapIoSpaceEx
# MmMapLockedPages
# MmMapLockedPagesSpecifyCache
# MmMapLockedPagesWithReservedMapping
# MmMapMdl
# MmMapMemoryDumpMdlEx
# MmPageEntireDriver
# MmProbeAndLockPages
# MmProbeAndLockSelectedPages
# MmProtectDriverSection
# MmProtectMdlSystemAddress
# MmQuerySystemSize
# MmResetDriverPaging
# MmSizeOfMdl
# MmUnlockPagableImageSection
# MmUnlockPages
# MmUnmapIoSpace
# MmUnmapLockedPages
# MmUnmapReservedMapping
######################################################
# These functions can throw exceptions when limited memory is available,
# resulting in unstable behaviour and potential DoS conditions.
Expand Down

0 comments on commit ce7d9d4

Please sign in to comment.