>From my cursory look at the code,(/me is a C rookie) it seems that it only affects w2k and winXP, does anyone know of any exploit that targets NT4??? Given that question, how hard would it be to code in NT4 functionality??
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Kruse Sent: 09 October 2003 14:27 To: 'Sudharsha Wijesinghe'; [EMAIL PROTECTED] Subject: SV: [Full-Disclosure] MS RPC remote exploit. Hi, Systems already updated are not vulnerable to this exploit. The new code is simply improved and is now more "universal". It doesn�t make use of static addresses for jumps which makes the improved code much more dangerous since it will be effective on a large range of different vulnerable Microsoft Windows operativ systems. Kind regards // Med venlig hilsen Peter Kruse CSIS / Kruse Security ApS http://www.krusesecurity.dk - www.csis.dk > -----Oprindelig meddelelse----- > Fra: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] P� vegne af > Sudharsha Wijesinghe > Sendt: 9. oktober 2003 14:42 > Til: [EMAIL PROTECTED] > Emne: [Full-Disclosure] MS RPC remote exploit. > > > According to MS there cant be any Remote exploit on MS RPC > except for a DOS attack using 139/135/445. How ever the code > is available for a shell code. has any one tried this exploit? > > Sudharsha > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html -------------------Warning------------------------ This e-mail is from outside Tesco - check that it is genuine. Tesco may monitor and record all e-mails. ---- Disclaimer ---- This is a confidential email. Tesco may monitor and record all emails. The views expressed in this email are those of the sender and not Tesco. Tesco Stores Limited, Tesco House, Delamare Road, Cheshunt, Herts, EN8 9SL: company number 519500. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
