[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-disclosure] Exploit for MS06-040 Out?

To: "Matt Davis" <stackinjection@xxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: RE: [Full-disclosure] Exploit for MS06-040 Out?
From: "Joris Evers" <Joris.Evers@xxxxxxxx>
Date: Wed, 9 Aug 2006 11:24:28 -0700

Mehta was referring to a proof-of-concept exploit that is available for
Canvas and at least one other tool.
-----Original Message-----
From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
[mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf Of Matt
Davis
Sent: Wednesday, August 09, 2006 11:10 AM
To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Exploit for MS06-040 Out?

Just came across this on news.com regarding MS06-040 and homeland
security's response:

http://news.com.com/2100-7348_3-6103805.html?part=rss&tag=6103805&subj=n
ews

"Overnight, popular hacker toolkits were updated with code that allows
researchers to check for the flaw and exploit it, said Neel Mehta, a
security expert at Internet Security Systems in Atlanta."

Did I completely miss exploit code being released in the wild for that
vulnerability?

TIA

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Exploit for MS06-040 Out?
  - From: Ivan Arce

Prev by Date: [Full-disclosure] PocketPC MMS - Remote Code Injection/Execution Vulnerability and Denial-of-Service
Next by Date: Re: [Full-disclosure] Exploit for MS06-040 Out?
Previous by thread: Re: [Full-disclosure] Exploit for MS06-040 Out?
Next by thread: Re: [Full-disclosure] Exploit for MS06-040 Out?
Index(es):
- Date
- Thread