A forum for reverse engineering, OS internals and malware analysis 

Forum for discussion about user-mode development.
 #28795  by EP_X0FF
 Sat Jul 02, 2016 6:27 am

was this API EnumDisplayMonitors always crashing into oblivion when called with invalid combination of params like
Code: Select all
EnumDisplayMonitors(0, 0, 0, 0);
or its new feature since Vista?

Expected result: the function fails and return zero.
Observed result: crash

 #28796  by R136a1
 Sat Jul 02, 2016 8:26 am
Funny, there is not sanity check for the pointer of the callback function at all. Windows XP is also affected, probably nothing was done since its implementation in Windows 2000.
 #28797  by EP_X0FF
 Sat Jul 02, 2016 9:06 am
Thanks for checking. I'm checking win32k, so far fun bsods generated and only this routine crashing so annoying during test.