Version 3.6.2

ufrisk · Nov 5, 2018 · a0a037c · a0a037c
1 parent 43b66bc
commit a0a037c
Show file tree

Hide file tree

Showing 7 changed files with 6 additions and 7 deletions.
diff --git a/pcileech/pcileech.h b/pcileech/pcileech.h
@@ -7,7 +7,7 @@
 #define __PCILEECH_H__
 #include "oscompatibility.h"
 
-#define PCILEECH_VERSION_CURRENT            "3.6.1"
+#define PCILEECH_VERSION_CURRENT            "3.6.2"
 
 #define SIZE_PAGE_ALIGN_4K(x)                ((x + 0xfff) & ~0xfff)
 #define CONFIG_MAX_SIGNATURES                16

diff --git a/pcileech/vc140.pdb b/pcileech/vc140.pdb
diff --git a/pcileech/vmm.c b/pcileech/vmm.c
@@ -933,6 +933,7 @@ VOID VmmReadEx(_Inout_ PVMM_CONTEXT ctxVmm, _In_ PVMM_PROCESS pProcess, _In_ QWO
     PDMA_IO_SCATTER_HEADER pDMAs, *ppDMAs;
     QWORD i, oVA;
     if(pcbReadOpt) { *pcbReadOpt = 0; }
+    if(!cb) { return; }
     cDMAs = (DWORD)(((qwVA & 0xfff) + cb + 0xfff) >> 12);
     pbBuffer = (PBYTE)LocalAlloc(LMEM_ZEROINIT, 0x2000 + cDMAs * (sizeof(DMA_IO_SCATTER_HEADER) + sizeof(PDMA_IO_SCATTER_HEADER)));
     if(!pbBuffer) { return; }

diff --git a/pcileech/vmmproc.c b/pcileech/vmmproc.c
@@ -424,9 +424,8 @@ VOID VmmProcWindows_ScanLdrModules64(_Inout_ PVMM_CONTEXT ctxVmm, _In_ PVMM_PROC
         pModule->EntryPoint = (QWORD)pLdrModule->EntryPoint;
         pModule->SizeOfImage = (DWORD)pLdrModule->SizeOfImage;
         pModule->fWoW64 = FALSE;
-        if(pLdrModule->FullDllName.Length) {
-            if(!VmmReadString_Unicode2Ansi(ctxVmm, pProcess, (QWORD)pLdrModule->BaseDllName.Buffer, pModule->szName, min(31, pLdrModule->BaseDllName.Length))) { break; }
-        }
+        if(!pLdrModule->BaseDllName.Length) { break; }
+        if(!VmmReadString_Unicode2Ansi(ctxVmm, pProcess, (QWORD)pLdrModule->BaseDllName.Buffer, pModule->szName, min(31, pLdrModule->BaseDllName.Length))) { break; }
         *fWow64 = *fWow64 || !memcmp(pModule->szName, "wow64.dll", 10);
         if(fVerboseExtra) {
             printf("vmmproc.c!VmmProcWindows_ScanLdrModules: %016llx %016llx %016llx %08x %i %s\n", vaModuleLdr, pModule->BaseAddress, pModule->EntryPoint, pModule->SizeOfImage, (pModule->fWoW64 ? 1 : 0), pModule->szName);
@@ -494,9 +493,8 @@ BOOL VmmProcWindows_ScanLdrModules32(_Inout_ PVMM_CONTEXT ctxVmm, _In_ PVMM_PROC
         pModule->EntryPoint = (QWORD)pLdrModule32->EntryPoint;
         pModule->SizeOfImage = (DWORD)pLdrModule32->SizeOfImage;
         pModule->fWoW64 = TRUE;
-        if(pLdrModule32->FullDllName.Length) {
-            if(!VmmReadString_Unicode2Ansi(ctxVmm, pProcess, (QWORD)pLdrModule32->BaseDllName.Buffer, pModule->szName, min(31, pLdrModule32->BaseDllName.Length))) { break; }
-        }
+        if(!pLdrModule32->BaseDllName.Length) { break; }
+        if(!VmmReadString_Unicode2Ansi(ctxVmm, pProcess, (QWORD)pLdrModule32->BaseDllName.Buffer, pModule->szName, min(31, pLdrModule32->BaseDllName.Length))) { break; }
         if(fVerboseExtra) {
             printf("vmmproc.c!VmmProcWindows_ScanLdrModules32: %08x %08x %08x %08x %s\n", vaModuleLdr32, pModule->BaseAddress, pModule->EntryPoint, pModule->SizeOfImage, pModule->szName);
         }

diff --git a/pcileech_files/dll/pcileech.dll b/pcileech_files/dll/pcileech.dll
diff --git a/pcileech_files/dll/pcileech.lib b/pcileech_files/dll/pcileech.lib
diff --git a/pcileech_files/pcileech.exe b/pcileech_files/pcileech.exe