RE: Vulnerability for demo

["Prodigi Child" <prodigi.child () gmail com>]

Check securityfocus.com/bid and enter in Microsoft --> Windows Server 2003
Standard Edition --> SP2 and you will have a list. Some of them have
information on how to exploit.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of ¯`·._The Sun_.·´¯
Sent: Monday, October 20, 2008 1:36 AM
To: pen-test () securityfocus com
Subject: Vulnerability for demo


Hi,
I need to demonstrate a simple exploitation of a vulnerability (the
preferred target is a Windows 2003 server) using Metasploit  or anything
else which is freely available.

The three constraints I have:
1. The vulnerability should be fairly new (should be a Year 2008
vulnerability - prefer if it is in the last three months).
2. Exploit should be readily available (like in Metasploit)
3. Need to get system level access on target.
2. Should not be a client side vulnerability (e.g. vulnerabilities in
Internet Explorer are ruled out)
3. Snort should be able to pick that exploit (Snort will be updated before
the attack).

Can someone help me pick such a vulnerability?

Thanks.




_________________________________________________________________
Movies, sports & news! Get your daily entertainment fix, only on live.com
http://www.live.com/?scope=video&form=MICOAL
------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------