Nmap Development mailing list archives
NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug?
From: Fyodor <fyodor () insecure org>
Date: Wed, 9 Sep 2009 22:44:29 -0700
Has anyone started looking at a script to detect and/or exploit this issue? http://seclists.org/fulldisclosure/2009/Sep/0039.html http://it.slashdot.org/story/09/09/08/1345247/Windows-7-Reintroduces-Remote-BSoD?from=rss http://trac.metasploit.com/browser/framework3/trunk/modules/auxiliary/dos/windows/smb/smb2_negotiate_pidhigh.rb?rev=7010 http://crenk.com/windows-7-exploit-causes-bsod/ http://isc.sans.org/diary.html?storyid=7093 It does not look like a script to exploit the issue to crash a machine would be very hard. It would go into the "intrusive" category, and we might want to put it in a new "dos" category as well. Even better would be a script which can reliably detect the vulnerability without exploiting it. The script could have a special option for when exploitation is desired as well. Cheers, Fyodor _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Fyodor (Sep 09)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Fyodor (Sep 10)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Ron (Sep 10)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Trancer (Sep 10)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Rob Nicholls (Sep 10)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? Ron (Sep 10)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? David Fifield (Sep 13)
- Re: NSE Script to exploit the Windows Vista and 7 SMB 2.0 remote BSOD bug? David Fifield (Sep 14)