Dailydave mailing list archives
Re: Useless fact of the day!
From: "Rhys Kidd" <rhyskidd () gmail com>
Date: Sat, 6 Jan 2007 21:39:50 +0800
RPC memory exhaustion bugs are all the rage atm it would seem, hopefully this will provide the traction for MSRC to give it priority.... It's also interesting that ISC believe for servers that the current UPnP and SPOOLSS bugs are 'Important', whereas the more recent NetrWkstaUserEnum() bug is only 'Less Urgent'. They are pretty much the same, due to unvalidated client input, and in fact the NetrWkstaUserEnum() opnum ( through the wkssvc named pipe ) is usually bindable over an anonymous NULL session. - Rhys _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Useless fact of the day! Dave Aitel (Jan 05)
- Re: Useless fact of the day! Rhys Kidd (Jan 06)
- Re: Useless fact of the day! Dave Aitel (Jan 06)
- Re: Useless fact of the day! J.A. Terranson (Jan 06)
- Re: Useless fact of the day! Pusscat (Jan 06)
- Re: Useless fact of the day! Dave Aitel (Jan 06)
- <Possible follow-ups>
- Re: Useless fact of the day! Steven M. Christey (Jan 08)
- Re: Useless fact of the day! Rhys Kidd (Jan 06)