Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DCOM RPC exploit (dcom.c)

From: Nathan Seven <scosol () yahoo com>
Date: Sun, 27 Jul 2003 00:41:22 -0700 (PDT)
--- Paul Schmehl <pauls () utdallas edu> wrote:


Are you really serious?  Recall Slammer?  There were
networks that were
locked down pretty tight.  Slammer couldn't get in,
right?  Then one
developer who got his unpatched copy of SQL inside
the network, by
logging in through VPN with his infected laptop,
took the entire network
down.


Are *you* serious?

Running MSSQL server on my laptop that I also use to
VPN in is IMO a pretty fucking corner-case...

=====
--
live- http://www.thedenofsin.org/
to- AIM: IMFDUP
penetrate- http://eAnger.org/
_may the bitches set you free_
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: