In relation to the recent Nessus vulnerability check for the Microsoft RPC DCOM. This is the behavior that I have witnessed. Can run the scan with this vulnerability checked and with options "safe checks" enabled and a vulnerable system will be correctly discovered. Follow this up by disabling "safe checks' and the vulnerable system can be crashed. Next step is to get the patch from Microsoft and patch the system. Run the scan again with "safe checks" disabled and the system can still be crashed.
Two possible options here? 1) The patch provided by Microsoft does not work 2) The vulnerability check is not 100% accurate in accordance with this vulnerability Does the author (KK Liu) of this plugin have any comments?
