Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

SANS on-duty handler reports MS04-007 (ASN.1) DoS Exploit on the loose

From: "H. Morrow Long" <morrow.long () YALE EDU>
Date: Sat, 14 Feb 2004 19:35:16 -0500
http://isc.sans.org/diary.html?date=2004-02-14 :
...............................................................................................
<x-tad-bigger>A DOS exploit has been made available using the ASN.1 bug (MS04-007). This exploit uses port 445 or 135. While this is just a DOS exploit, more serious exploits may follow soon. </x-tad-bigger><x-tad-smaller>

</x-tad-smaller><x-tad-bigger>This may be your last chance to apply the patch! </x-tad-bigger><x-tad-smaller>

</x-tad-smaller><x-tad-bigger>(more details later. See yesterday's diary for more details regaring ASN.1) </x-tad-bigger><x-tad-smaller>
</x-tad-smaller>...............................................................................................

H. Morrow Long, CISSP, CISM
Dir. Information Security Office
Yale University, ITS

Attachment: smime.p7s
Description:

Previous By Date Next
Previous By Thread Next

Current thread: