[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Full-Disclosure] EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II
- To: <Jeff.Urnaza@xxxxxxxxxxxxxxxxx>, "'Full-Disclosure'" <full-disclosure@xxxxxxxxxxxxxxxx>
- Subject: RE: [Full-Disclosure] EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II
- From: "Chris DeVoney" <cdevoney@xxxxxxxxxxxxxxxx>
- Date: Wed, 10 Sep 2003 15:36:10 -0700
On Wednesday, September 10, 2003 1:26 PM, Jeff.Urnaza@xxxxxxxxxxxxxxxxx
wrote:
> The version number in eEye's supposed *new* scanner is the
> same version number as the one they release for the previous
> RPC exploit, v1.0.4.
Pardon my interuption, but the version I downloaded about noon-ish PDT has
version 1.1.0 in both its Help-About and its file properties. It does report
vulnerabilities to MS03-026 and -039.
cdv
------------------------
Chris DeVoney
Clinical Research Center Informatics
University of Washington
cdevoney@xxxxxxxxxxxxxxxx
206-598-6816
------------------------
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html