Re: [Full-Disclosure] RE: Re: Bad news on RPC DCOM vulnerability

[Alex]

Title: RE: Re: Bad news on RPC DCOM vulnerability

This code doesn't work without shellcode. The simple version of a "battle" shellcode can be found here: http://www.SecurityLab.ru/_exploits/bshell2 (add user 'a' with pass 'a' in administrator group) You can change this shellcode as you need. On system with MS03-39 installed, this code only crash systems, because nature of new vulnerability is not known. See more: http://www.securitylab.ru/40757.html   ----- Original Message ----- From: Mike Gordon To: [EMAIL PROTECTED] Sent: Monday, October 13, 2003 1:41 AM Subject: [Full-Disclosure] RE: Re: Bad news on RPC DCOM vulnerability A compiled version is found at http://www.SecurityLab.ru/_exploits/rpc3.zip But it seems to only crash systems. Does any one have a clean complile of the "better code" from http://www.cyberphreak.ch/sploitz/MS03-039.txt