Full Disclosure mailing list archives
Re: Windows 2000 Remote Buffer Overflow by class101
From: "J.A. Terranson" <measl () mfn org>
Date: Sat, 23 Oct 2004 13:08:27 -0500 (CDT)
On Fri, 22 Oct 2004, Danny wrote:
"Stack based overflow, bug discovered by Luigi Auriemma aluigi.altervista.org Tested working on Win2K, This public version crash on any WinXP, read the code why. The exploit bind a shellcode on the victim port 101."What does Microsoft say in response?
In a news conference where Mr. Bill was approached with this very question, he is reported to have stated that "The Windows Operating System is the most secure piece of crap, er, um, code ever written. Micro$loth emphatically denies that this is anything but the most minor of issues, and doesn't even rise to the level of threat necessary to achieve public commentary. Therefore, Micro$loth has no comment. Thank you, and good night.". -- Yours, J.A. Terranson sysadmin () mfn org 0xBD4A95BF "An ill wind is stalking while evil stars whir and all the gold apples go bad to the core" S. Plath, Temper of Time _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Windows 2000 Remote Buffer Overflow by class101 sk3tch (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 Danny (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 J.A. Terranson (Oct 23)
- Re: Windows 2000 Remote Buffer Overflow by class101 kf_lists (Oct 22)
- <Possible follow-ups>
- Re: Windows 2000 Remote Buffer Overflow by class101 class 101 (Oct 22)
- Re: Windows 2000 Remote Buffer Overflow by class101 Danny (Oct 22)