Mehta was referring to a proof-of-concept exploit that is available for Canvas and at least one other tool. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matt Davis Sent: Wednesday, August 09, 2006 11:10 AM To: [email protected] Subject: [Full-disclosure] Exploit for MS06-040 Out?
Just came across this on news.com regarding MS06-040 and homeland security's response: http://news.com.com/2100-7348_3-6103805.html?part=rss&tag=6103805&subj=n ews "Overnight, popular hacker toolkits were updated with code that allows researchers to check for the flaw and exploit it, said Neel Mehta, a security expert at Internet Security Systems in Atlanta." Did I completely miss exploit code being released in the wild for that vulnerability? TIA _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
