Full Disclosure mailing list archives
Re: Windows 2000 Remote Buffer Overflow by class101
From: "J.A. Terranson" <measl () mfn org>
Date: Sat, 23 Oct 2004 13:08:27 -0500 (CDT)
On Fri, 22 Oct 2004, Danny wrote:
"Stack based overflow, bug discovered by Luigi Auriemma aluigi.altervista.org Tested working on Win2K, This public version crash on any WinXP, read the code why. The exploit bind a shellcode on the victim port 101."What does Microsoft say in response?
In a news conference where Mr. Bill was approached with this very
question, he is reported to have stated that "The Windows Operating System
is the most secure piece of crap, er, um, code ever written. Micro$loth
emphatically denies that this is anything but the most minor of issues,
and doesn't even rise to the level of threat necessary to achieve public
commentary. Therefore, Micro$loth has no comment. Thank you, and good
night.".
--
Yours,
J.A. Terranson
sysadmin () mfn org
0xBD4A95BF
"An ill wind is stalking
while evil stars whir
and all the gold apples
go bad to the core"
S. Plath, Temper of Time
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Windows 2000 Remote Buffer Overflow by class101 sk3tch (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 Danny (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 J.A. Terranson (Oct 23)
- Re: Windows 2000 Remote Buffer Overflow by class101 kf_lists (Oct 22)
- <Possible follow-ups>
- Re: Windows 2000 Remote Buffer Overflow by class101 class 101 (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 Danny (Oct 22)