[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] MS RPC remote exploit.

To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] MS RPC remote exploit.
From: Stephen <alf1num3rik@yahoo.com>
Date: Thu, 9 Oct 2003 06:45:23 -0700 (PDT)

--- Sudharsha Wijesinghe <sudharsha@digitalhouse.lk>
wrote:
> According to MS there cant be any Remote exploit on
> MS RPC except for a
> DOS attack using 139/135/445.
> How ever the code is available for a shell code.
> has any one tried this exploit?

no remote exploit ?

http://www.k-otik.com/exploits/10.09.rpc2universal.c.php
http://www.k-otik.com/exploits/09.20.rpcdcom2ver1.1.c.php
http://lists.netsys.com/pipermail/full-disclosure/2003-September/009848.html

in MS03-039 we can see : 

...There are three newly identified vulnerabilities in
the part of RPCSS ...two that could allow arbitrary
code execution and one that could result in a denial
of service"

Regards.

__________________________________
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search
http://shopping.yahoo.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [inbox] Re: [Full-Disclosure] MS RPC remote exploit.
  - From: "Curt Purdy" <purdy@tecman.com>

References:
- [Full-Disclosure] MS RPC remote exploit.
  - From: Sudharsha Wijesinghe <sudharsha@digitalhouse.lk>

Prev by Date: RE: [Full-Disclosure] Spam with PGP
Next by Date: Re: [Full-Disclosure] Re: I have fixes for the Geeklog vulnerabilities
Previous by thread: RE: [Full-Disclosure] MS RPC remote exploit.
Next by thread: RE: [inbox] Re: [Full-Disclosure] MS RPC remote exploit.
Index(es):
- Date
- Thread