[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] CVE-2013-4124 samba nttrans dos private exploit

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] CVE-2013-4124 samba nttrans dos private exploit
From: x90c <geinblues@xxxxxxxxx>
Date: Wed, 21 Aug 2013 15:47:16 +0900

Hi Forks!

It's my samba private exploit and article
of it. the security bug occurs while nttrans
reply in samba daemon source code tree.

the remote dos exploit that i copied from
another nttrans exploit in 2003. and can't
test it yet, check it out!

CVE-2013-4124 samba dos private exploit:
- http://www.x90c.org/exploits/samba_nttr
  ans_exploit.c

... and I left an article about the bug with an analyze

samba nttrans reply integer overflow:
- http://www.x90c.org/articles/samba_nttran
  s_reply_integer_overflow.txt


x90c

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Sparty : A SharePoint and FrontPage Security Auditing Tool !
Next by Date: [Full-disclosure] Last (short) chance to submit papers for PacSec in Tokyo Nov 13-14. Deadline FRIDAY.
Previous by thread: [Full-disclosure] Sparty : A SharePoint and FrontPage Security Auditing Tool !
Next by thread: [Full-disclosure] Last (short) chance to submit papers for PacSec in Tokyo Nov 13-14. Deadline FRIDAY.
Index(es):
- Date
- Thread