[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] unix based network scanner for 2nd MS DCOM DCE RPC vulnerability
- To: Doke <doke@xxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxx
- Subject: Re: [Full-Disclosure] unix based network scanner for 2nd MS DCOM DCE RPC vulnerability
- From: Jeremiah Cornelius <jeremiah@xxxxxxx>
- Date: Thu, 11 Sep 2003 13:06:30 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Thursday 11 September 2003 12:20, Doke wrote:
> I've written a unix (Linux and Solaris) network scanner for the second
> MS DCOM DCE RPC vulnerability, MS03-039. It can differentiate between
> unpatched for either dcom hole, patched for first, and patched for second.
> It has a normal mode for checking one ip, a subnet mode, and a quiet mode
> for use in scripts or CGIs. The source code is available at:
>
> http://udel.edu/~doke/dcom2/
>
> Suggestions and constructive criticism are invited.
>
> Cheers,
> Doke
Nice, Doke!
The only thing I can say is that it would be nice to document this, other than
a trip through your source.
Could you post a README with your experience, methods, source material etc.
This would be a big help!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/YNXaJi2cv3XsiSARAu58AKDV6WNY+liEz236cx6KqOggNBauQgCgihuO
ISBwUK2FNq48S4qrjszRO9c=
=I3Sd
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html