Console Buffer Security and Access Rights
The Windows security model enables you to control access to console input buffers and console screen buffers. For more information about security, see Access-Control Model.
You can specify a security descriptor for the console input and console screen buffers when you call the CreateFile or CreateConsoleScreenBuffer function. If you specify NULL, the object gets a default security descriptor. The ACLs in the default security descriptor for a console buffer come from the primary or impersonation token of the creator.
The valid access rights include the GENERIC_READ and GENERIC_WRITE generic access rights.
|GENERIC_READ (0x80000000L)||Requests read access to the console screen buffer, enabling the process to read data from the buffer.|
|GENERIC_WRITE (0x40000000L)||Requests write access to the console screen buffer, enabling the process to write data to the buffer.|