That "one other tool" would be Core IMPACT (I guess it's ok to talk about commercial security tools on this list, right?)
Anyway, we made our MS06-040 exploit available to all of our customers within a few hours of the patch release. It is not a PoC but a commercial-grade exploit that has been documented and QA tested before being shipped to all our customers. It works against Win2k and NT4 (still working on XP/win2k3) over port 139/tcp and 445/tcp, it supports DCE and SMB fragmentation and NTLM/LANMAN authentication. -ivan Joris Evers wrote: > Mehta was referring to a proof-of-concept exploit that is available for > Canvas and at least one other tool. > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Matt > Davis > Sent: Wednesday, August 09, 2006 11:10 AM > To: [email protected] > Subject: [Full-disclosure] Exploit for MS06-040 Out? > > Just came across this on news.com regarding MS06-040 and homeland > security's response: > > http://news.com.com/2100-7348_3-6103805.html?part=rss&tag=6103805&subj=n > ews > > "Overnight, popular hacker toolkits were updated with code that allows > researchers to check for the flaw and exploit it, said Neel Mehta, a > security expert at Internet Security Systems in Atlanta." > > Did I completely miss exploit code being released in the wild for that > vulnerability? > > TIA > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -- --- "Buy the ticket, take the ride" -HST Ivan Arce CTO CORE SECURITY TECHNOLOGIES http://www.coresecurity.com PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836 B25D 207B E78E 2AD1 F65A _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
