[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
From: "Schmehl, Paul L" <pauls@xxxxxxxxxxxx>
Date: Wed, 3 Sep 2003 10:07:46 -0500

> -----Original Message----- 
>From: Nadeem Rafi [mailto:nrafi@xxxxxxxxxxx] 
>Sent: Wednesday, September 03, 2003 5:07 AM 
>To: full-disclosure@xxxxxxxxxxxxxxxx 
>Subject: [Full-Disclosure] Scanning the PCs for RPC Vulnerability 
>
>I have found some faults in the scanning tools available from 
>Foundstone and Microsoft for RPC vulnerable machines. Both of 
>these tools are not error free. These tools are showing the ip 
>addresses of even those machines which are Windows 9x, 
>Windows98/Sec, Windows ME. Both tools are not free from this error.

What do you mean by this?  I haven't used the Foundstone tool, but are
you saying that the MS tool puts IPs of Win9x/ME hosts on the list of
vulnerable hosts?

Paul Schmehl (pauls@xxxxxxxxxxxx)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/ 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] SMC7004VB sensitive information leak
Next by Date: Re: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
Previous by thread: RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
Next by thread: Re: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
Index(es):
- Date
- Thread