Full Disclosure mailing list archives
re: First Report : New Blaster?
From: "Willem Koenings" <isec () europe com>
Date: Fri, 23 Apr 2004 08:15:21 -0500
Heya folks. Can I claim possible new Blaster type execution on Windows XP SP2 (Buid v. 2096)? Nothing reported by major vendors, but ...
I don't think so. Beside MS04-007 ASN.1 Remote DoS Exploit, there is worm called Sepuc. It uses multistage infection method via IE/chm and injects two dll files to lsass process space thus causing lsass to crash. W. -- ___________________________________________________________ Sign-up for Ads Free at Mail.com http://promo.mail.com/adsfreejump.htm _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- First Report : New Blaster? Oliver Raymond (Apr 22)
- <Possible follow-ups>
- re: First Report : New Blaster? Willem Koenings (Apr 23)
- Re: re: First Report : New Blaster? Joe Stewart (Apr 23)