[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Scanning the PCs for RPC Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
From: Nadeem Rafi <nrafi@xxxxxxxxxxx>
Date: Wed, 03 Sep 2003 13:06:46 +0300

I have found some faults in the scanning tools available from Foundstone and 
Microsoft for RPC vulnerable machines. Both of  these tools are not error free. 
These tools are showing the ip addresses of even those machines which are 
Windows 9x, Windows98/Sec, Windows ME. Both tools are not free from this error.
And Foundstone's RPC Scan tool is even more error prone. If you even applied 
all the patches in correct  sequence even then some of my machines are reported 
as "Vulnerable".
 
Any body have any experience with these problems or any suggestions please let 
me know.
 
Best Regards,
 
Nadeem Rafi

Follow-Ups:
- RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
  - From: Marc Maiffret

Prev by Date: Re: [Full-Disclosure] Trend Micro Interscan Viruswall: missing whole_file_scan=yes let pass at least one Sobig.f eMail
Next by Date: Re: [Full-Disclosure] Bill Gates blames the victim
Previous by thread: Re: [Full-Disclosure] Trend Micro Interscan Viruswall: missing whole_file_scan=yes let pass at least one Sobig.f eMail
Next by thread: RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
Index(es):
- Date
- Thread