Full Disclosure mailing list archives

RE: Microsoft Internet Explorer Full RemoteCompromise w/o User Intervention

From: "Alerta RedSegura" <alerta () redsegura com>
Date: Sat, 25 Dec 2004 18:37:28 -0500

I have run the exploit at http://freehost07.websamba.com/greyhats/sp2rc.htm
on several fully patched Windows XP SP2 boxes here (no special config, hta's
and scripting enabled) and no file gets created or run.  Just a help window
displayed and that's it.


Regards,


Inigo Koch
Red Segura

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Microsoft Internet Explorer Full Remote Compromise w/o User Intervention tuytumadre (Dec 25)
- <Possible follow-ups>
- Microsoft Internet Explorer Full Remote Compromise w/o User Intervention tuytumadre (Dec 25)
  - RE: Microsoft Internet Explorer Full RemoteCompromise w/o User Intervention Alerta RedSegura (Dec 26)