Hello full-disclosure!
years ago I found a bug in Process Explorer tool, written by Mark
Russinovich. well, not a bug, just misfeature :) Process Explorer
tries to determine the start address of a thread, but does this
wrong and under certain conditions gives us an incorrect result.
I sent a repor
create plug-in, doing it automatically,
or set-up a conditional breakpoint on KiUserExceptionDispatcher.
I've checked the latest 2.00e version [April 19, 2008] and...
the bug is still there, damn it!
I reported about this bug to the Olly creator and he admitted it,
writing me back:
# Dear K
