Full Disclosure mailing list archives

Re: EXPLOIT : RPC DCOM (MS03-039)

From: Florian Weimer <fw () deneb enyo de>
Date: Wed, 17 Sep 2003 09:50:18 +0200

pdt () jackhammer org writes:

Has anyone tested this exploit successfully?  I havn't been able to
make it work as of yet.  I tried the Target 0 type and have the
exact DLL versions referenced.  Just wondering if this is BS or
there is some other dependency on my test systems that isn't quite
lining up.


I'm not sure.  I've got credible reports from people who got a bit
further: the exploit corrupted some DLLs on the victim (making the
system unbootable).

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

EXPLOIT : RPC DCOM (MS03-039) Elv1S (Sep 16)
- RE: EXPLOIT : RPC DCOM (MS03-039) Jason Coombs (Sep 16)
- <Possible follow-ups>
- RE: EXPLOIT : RPC DCOM (MS03-039) pdt (Sep 16)
  - Re: EXPLOIT : RPC DCOM (MS03-039) Florian Weimer (Sep 17)
- RE: EXPLOIT : RPC DCOM (MS03-039) Jerry Heidtke (Sep 16)
  - RE: EXPLOIT : RPC DCOM (MS03-039) Paul Tinsley (Sep 16)