Full Disclosure mailing list archives

Re: Blaster: will it spread without tftp?

From: "Maarten Hartsuijker" <maarten () hartsuijker com>
Date: Wed, 13 Aug 2003 00:02:48 +0200

nope. It can be downloaded from the infected host(s). It'll spread
inside the Intranet just fine.

Thank you!

Buckle your seatbelt, it's going to be a bumpy night - at least for
you. ;^)

Well, not this night. Have been monitoring my segment all day and have not
seen any attempts (on the inside) yet. Maybe tomorrow ;-)

And be glad msblast doesn't do more damage. It could have been sooo
much worse. But I'm sure the bad ones are waiting in the wings.

I totally agree. Kaht makes an excellent example of what *can* be...

I also read something about SP0|1|2 on W2K not being vulnerable to
msblaster

 Can't comment on that.

Maybe someone else can?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd), (continued)
- - - Re: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Jeremiah Cornelius (Aug 13)
    - RE: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Nick FitzGerald (Aug 13)
    - RE: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Joey (Aug 13)
    - RE: ISS Security Brief: 'MS Blast' MSRPC DCOM Worm Propagation (fwd) Daniele Muscetta (Aug 14)
    - RE: ISS Security Brief: 'MS Blast' MSRPC DCOM Worm Propagation (fwd) Joey (Aug 14)
    - RE: ISS Security Brief: 'MS Blast' MSRPC DCOM Worm Propagation (fwd) Daniele Muscetta (Aug 14)
    - Re: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) morning_wood (Aug 12)
- RE: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Evans, Arian (Aug 12)
  - Blaster: will it spread without tftp? Maarten (Aug 12)
    - Re: Blaster: will it spread without tftp? Craig Pratt (Aug 12)
    - Re: Blaster: will it spread without tftp? Maarten Hartsuijker (Aug 12)
    - Re: Blaster: will it spread without tftp? Jim Clausing (Aug 12)
    - Re: Blaster: will it spread without tftp? Matthew Murphy (Aug 12)
    - RE: Blaster: will it spread without tftp? Derek Soeder (Aug 12)
    - Re: Blaster: will it spread without tftp? Nick FitzGerald (Aug 12)
    - Re: Blaster: will it spread without tftp? Russell Fulton (Aug 12)
    - Re: Blaster: will it spread without tftp? Gregory Steuck (Aug 13)
    - Re: Blaster: will it spread without tftp? Valdis . Kletnieks (Aug 13)
  - RE: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Ron DuFresne (Aug 12)
    - Re: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Gregory Steuck (Aug 13)
  - RE: ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd) Mike (Aug 13)

(Thread continues...)