Figure 3.2Objects and process handle tables.
User-ModeKernel-ModeProcess 292
Access Mask:Read WriteObject PointerProcess HHandle 0x4:andle Table (PID 292)Access Mask:Read OnlyObject PointerHandle 0x8:Access Mask:All RightsObject PointerHandle 0xC:Access Mask:All RightsObject PointerHandle 0x10:Object A: S pecifc Data
Structure
Object B: S pecifc DataStructure
Object C: Specifc DataStructure
Object D: Specifc DataStructureAccess Mask:RW, DeleteObject PointerProcess HandlHandle 0x4:e Table (PID188)Access Mask:
Read OnlyObject PointerHandle 0x8:Access Mask:All RightsObject PointerHandle 0xC:.........Process 188
Object E: S pecifc DataStructure.........Object Manager HeaderObject Manager HeaderObject Manager HeaderObject Manager HeaderObject Manager Header