Metasploit mailing list archives
Metasploit Framework Updates (Jan-31-2006)
From: solata10 at yahoo.com (solata)
Date: Wed, 1 Feb 2006 00:48:45 -0800 (PST)
i can host some forum on my server. i cant promise you 100% uptime, but it runs most of the time (goes off when my ISP fucks up). running linux 2.4 , apache2, php5, mysql4 .... can add packages if any needed. --- H D Moore <hdm at metasploit.com> wrote:
Hi everyone, Thanks to everyone who tested the Winamp exploit, it looks like the Metasploit module will only work on versions 5.11 and 5.12. A new version of this exploit has been pushed to msfupdate along with four other exploits that have been sitting in my incoming queue. Thanks to y0 for sending in tons of exploits as usual and David Maciejak for being patient while I figured out what his code did :-) The 'beta' module thing sounds like a go, but until we integrate this into msfupdate (which may take until 3.0 goes beta), some type of forum or wiki may be the best to handle it. Unfortunately, I don't know of a wiki or forum package that I would trust to run on our servers. If anyone has a suggestion for a software package that isn't trivially exploitable or would like to host it on their own systems, please let me know off-list. The new exploit modules are: - winamp_playlist_unc - ypops_smtp - wzdftpd_site - wmailserver_smtp - bluecoat_winproxy -HD PS. When using the new Winamp module, try setting the advanced option 'Humor' to '1' and then watching the target system's screen while the bug is exploited...
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Current thread:
- Metasploit Framework Updates (Jan-31-2006) H D Moore (Jan 31)
- Metasploit Framework Updates (Jan-31-2006) solata (Feb 01)
- Metasploit Framework Updates (Jan-31-2006) Gerard Leonardo (Feb 01)
- Metasploit Framework Updates (Jan-31-2006) Michael Boman (Feb 01)
- Metasploit Framework Updates (Jan-31-2006) H D Moore (Feb 01)