Full Disclosure mailing list archives
Re : [VERY] BAD news on RPC DCOM Exploit
From: Stephen <alf1num3rik () yahoo com>
Date: Fri, 10 Oct 2003 14:36:33 -0700 (PDT)
as Alex said This code work with *all security fixes* . It's very dangerous ... http://www.k-otik.com/exploits/10.09.rpc2universal.c.php http://www.k-otik.com/exploits/10.09.rpcunshell.asm.php god bless dcom !
----- Original Message ----- From: "3APA3A" <3APA3A () SECURITY NNOV RU> To: <bugtraq () securityfocus com>; <full-disclosure () lists netsys com>; <NTBUGTRAQ () LISTSERV NTBUGTRAQ COM> Cc: <Secure () microsoft com> Sent: Friday, October 10, 2003 6:48 PM Subject: Bad news on RPC DCOM vulnerabilityDear bugtraq () securityfocus com, There are few bad news on RPC DCOM vulnerability: 1. Universal exploit for MS03-039 existsin-the-wild, PINK FLOYD isagain actual. 2. It was reported by exploit author (andconfirmed), Windows XP SP1with all security fixes installed stillvulnerable to variant of thesame bug. Windows 2000/2003 was not tested. For awhile only DoS exploitexists, but code execution is probably possible.Technical details aresent to Microsoft, waiting for confirmation. Dear ISPs. Please instruct you customers touse personal fireWALL inWindows XP. -- http://www.security.nnov.ru /\_/\ { , . } |\ +--oQQo->{ ^ }<-----+ \ | ZARAZA U 3APA3A } +-------------o66o--+ / |/ You know my name - look up my number (The Beatles)_______________________________________________ Full-Disclosure - We believe in it. Charter:
http://lists.netsys.com/full-disclosure-charter.html __________________________________ Do you Yahoo!? The New Yahoo! Shopping - with improved product search http://shopping.yahoo.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Bad news on RPC DCOM vulnerability 3APA3A (Oct 10)
- Re: Bad news on RPC DCOM vulnerability Alex (Oct 10)
- Re : [VERY] BAD news on RPC DCOM Exploit Stephen (Oct 10)
- <Possible follow-ups>
- Re: Bad news on RPC DCOM vulnerability Adrian_Stone (Oct 10)
- RE: Re: Bad news on RPC DCOM vulnerability Brown, Bobby (US - Hermitage) (Oct 10)
- RE: Re: Bad news on RPC DCOM vulnerability Macroscape Solutions (Oct 10)
- Re: Re: Bad news on RPC DCOM vulnerability petard (Oct 10)
- RE: Re: Bad news on RPC DCOM vulnerability Bobby Brown (Oct 10)
- RE: Re: Bad news on RPC DCOM vulnerability V.O. (Oct 10)
- RE: Re: Bad news on RPC DCOM vulnerability Byron Copeland (Oct 10)
- Re: Re: Bad news on RPC DCOM vulnerability petard (Oct 10)
- Re: Bad news on RPC DCOM2 vulnerability Peter King (Oct 11)
- AW: Bad news on RPC DCOM2 vulnerability Florian Keller (Oct 11)
- Re: Bad news on RPC DCOM vulnerability Alex (Oct 10)