Bugs bugs bugs

[Dave Aitel <dave () immunityinc com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Some minor editing on today's MSMQ vulnerability
http://www.microsoft.com/technet/security/Bulletin/MS07-065.mspx .

The introduction says this:
"""

This important security update resolves a privately reported
vulnerability in Message Queuing Service (MSMQ) that could allow
remote code execution in implementations on Microsoft Windows 2000
Server, or elevation of privilege in implementations on Microsoft
Windows 2000 Professional and Windows XP. An attacker must have valid
logon credentials to exploit this vulnerability.
"""

The mitigations section correctly states that you do not need valid
login credentials for Windows 2000 Server.

That doesn't look like a bug someone fuzzed to us. Cool bug though.

One weird thing about the UAC stuff in Vista is it assumes there won't
be a steady stream of kernel 0days. I'm not sure why that assumption
was made. In the balance of "Really annoy user" versus "Provide
security" I think they made the wrong choice here. Once you're running
code on a box you're assumed to be Ring0 until proven otherwise.

- -dave
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHXwqaB8JNm+PA+iURAtvuAJ92q6hCOSH/lLfhLCVByJ/e4nJvowCfSAut
cJyP/cR1VEX3Si03ksBN8TA=
=kQxe
-----END PGP SIGNATURE-----


_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave