Full Disclosure mailing list archives
Re: MS RPC remote exploit.
From: Patrick Brauch <pab () heisec de>
Date: Thu, 9 Oct 2003 15:15:36 +0200 (CEST)
On Thu, 9 Oct 2003, Sudharsha Wijesinghe wrote:
According to MS there cant be any Remote exploit on MS RPC except for a DOS attack using 139/135/445.
Where did they say so? http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp "Impact of vulnerability: Three new vulnerabilities, the most serious of which could enable an attacker to run arbitrary code on a user\x{2019}s system." cheers, -- Patrick Brauch <pab () heisec de> heise security http://www.heisec.de c't Magazin fuer Computertechnik http://www.heise.de/ct PGP-Fingerprint: 8366 03AC D702 F2BB C617 E6BC 1811 950E _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- MS RPC remote exploit. Sudharsha Wijesinghe (Oct 09)
- Re: MS RPC remote exploit. Patrick Brauch (Oct 09)
- Re: [normal] Re: MS RPC remote exploit. What about DCOMbobulator? opticfiber (Oct 09)
- Re: [normal] Re: MS RPC remote exploit. What about DCOMbobulator? Russell Fulton (Oct 09)
- Re: [normal] Re: MS RPC remote exploit. What about DCOMbobulator? Vladimir Parkhaev (Oct 09)
- Re: [normal] Re: MS RPC remote exploit. What about DCOMbobulator? Patrick Brauch (Oct 09)
- Re: [normal] Re: MS RPC remote exploit. What about DCOMbobulator? opticfiber (Oct 09)
- Re: MS RPC remote exploit. Kilian CAVALOTTI (Oct 09)
- RE: MS RPC remote exploit. Nathan (Oct 09)
- Re: MS RPC remote exploit. Stephen (Oct 09)
- RE: [inbox] Re: MS RPC remote exploit. Curt Purdy (Oct 09)
- SV: MS RPC remote exploit. Peter Kruse (Oct 09)
- Re: SV: MS RPC remote exploit. Telefónica Deutschland (Oct 09)
(Thread continues...)
- Re: MS RPC remote exploit. Patrick Brauch (Oct 09)