[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] MS RPC remote exploit.

To: Sudharsha Wijesinghe <sudharsha@digitalhouse.lk>
Subject: Re: [Full-Disclosure] MS RPC remote exploit.
From: Patrick Brauch <pab@heisec.de>
Date: Thu, 9 Oct 2003 15:15:36 +0200 (CEST)

On Thu, 9 Oct 2003, Sudharsha Wijesinghe wrote:

> According to MS there cant be any Remote exploit on MS RPC except for a
> DOS attack using 139/135/445.

Where did they say so?

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp

"Impact of vulnerability: Three new vulnerabilities, the most serious of
which could enable an attacker to run arbitrary code on a user\x{2019}s
system."

cheers,
-- 
Patrick Brauch                            <pab@heisec.de>
heise security                       http://www.heisec.de
c't Magazin fuer Computertechnik   http://www.heise.de/ct
PGP-Fingerprint: 8366 03AC D702 F2BB  C617 E6BC 1811 950E

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [normal] Re: [Full-Disclosure] MS RPC remote exploit. What about DCOMbobulator?
  - From: opticfiber <opticfiber@topsight.net>

References:
- [Full-Disclosure] MS RPC remote exploit.
  - From: Sudharsha Wijesinghe <sudharsha@digitalhouse.lk>

Prev by Date: AW: [Full-Disclosure] IE Changes / Software Patents
Next by Date: SV: [Full-Disclosure] MS RPC remote exploit.
Previous by thread: [Full-Disclosure] MS RPC remote exploit.
Next by thread: Re: [normal] Re: [Full-Disclosure] MS RPC remote exploit. What about DCOMbobulator?
Index(es):
- Date
- Thread