Metasploit Framework Updates (Jan-31-2006)

[solata10 at yahoo.com (solata)]

i can host some forum on my server. i cant promise you
100% uptime, but it runs most of the time (goes off
when my ISP fucks up). running linux 2.4 , apache2,
php5, mysql4 .... can add packages if any needed.

--- H D Moore <hdm at metasploit.com> wrote:

> Hi everyone,
>
> Thanks to everyone who tested the Winamp exploit, it
> looks like the 
> Metasploit module will only work on versions 5.11
> and 5.12. A new version 
> of this exploit has been pushed to msfupdate along
> with four other 
> exploits that have been sitting in my incoming
> queue. Thanks to y0 for 
> sending in tons of exploits as usual and David
> Maciejak for being patient 
> while I figured out what his code did :-)
>
> The 'beta' module thing sounds like a go, but until
> we integrate this into 
> msfupdate (which may take until 3.0 goes beta), some
> type of forum or 
> wiki may be the best to handle it. Unfortunately, I
> don't know of a wiki 
> or forum package that I would trust to run on our
> servers. If anyone has 
> a suggestion for a software package that isn't
> trivially exploitable or 
> would like to host it on their own systems, please
> let me know off-list.
>
> The new exploit modules are:
> - winamp_playlist_unc
> - ypops_smtp
> - wzdftpd_site
> - wmailserver_smtp
> - bluecoat_winproxy
>
> -HD
>
> PS. When using the new Winamp module, try setting
> the advanced option 
> 'Humor' to '1' and then watching the target system's
> screen while the bug 
> is exploited...


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com