Dailydave mailing list archives
Bugs bugs bugs
From: Dave Aitel <dave () immunityinc com>
Date: Tue, 11 Dec 2007 17:09:32 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Some minor editing on today's MSMQ vulnerability http://www.microsoft.com/technet/security/Bulletin/MS07-065.mspx . The introduction says this: """ This important security update resolves a privately reported vulnerability in Message Queuing Service (MSMQ) that could allow remote code execution in implementations on Microsoft Windows 2000 Server, or elevation of privilege in implementations on Microsoft Windows 2000 Professional and Windows XP. An attacker must have valid logon credentials to exploit this vulnerability. """ The mitigations section correctly states that you do not need valid login credentials for Windows 2000 Server. That doesn't look like a bug someone fuzzed to us. Cool bug though. One weird thing about the UAC stuff in Vista is it assumes there won't be a steady stream of kernel 0days. I'm not sure why that assumption was made. In the balance of "Really annoy user" versus "Provide security" I think they made the wrong choice here. Once you're running code on a box you're assumed to be Ring0 until proven otherwise. - -dave -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHXwqaB8JNm+PA+iURAtvuAJ92q6hCOSH/lLfhLCVByJ/e4nJvowCfSAut cJyP/cR1VEX3Si03ksBN8TA= =kQxe -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Bugs bugs bugs Dave Aitel (Dec 11)
- Re: Bugs bugs bugs Joanna Rutkowska (Dec 13)