Bugtraq mailing list archives

Re: RFP9903: AeDubug vulnerabilty

From: jjohanss () BU EDU (Jesper M. Johansson)
Date: Tue, 12 Oct 1999 18:13:50 -0400

I have a machine which Dr.Watsons reliably when running SRVINFO.EXE
against a particular host (I haven't figured out why yet...)


Maybe a samba box?  Samba will often give things back to Win32 API calls
that NT won't and it can violate the programmer's assumptions.


FYI, this most likely happened because he was using the NT Resource Kit
Supplement 2 version of SRVINFO.EXE. It would Dr. Watson when run against a
machine that had any hotfixes installed. Use the Supplement 3 version of
SRVINFO.EXE instead.

Jesper

Jesper M. Johansson, Ph.D.
Assistant Professor, Boston University
jjohanss () bu edu
Editor, SANS NT Digest
MCSE , MCP + I

Current thread:

Re: RFP9903: AeDubug vulnerabilty Mark Dixon ext3456 (Oct 05)
- Re: RFP9903: AeDubug vulnerabilty David LeBlanc (Oct 07)
- <Possible follow-ups>
- Re: RFP9903: AeDubug vulnerabilty Mark Dixon (Oct 09)
  - Re: RFP9903: AeDubug vulnerabilty Steve Coleman (Oct 12)
    - Re: RFP9903: AeDubug vulnerabilty David Zverina (Oct 14)
  - Re: RFP9903: AeDubug vulnerabilty David LeBlanc (Oct 12)
    - Re: RFP9903: AeDubug vulnerabilty Jesper M. Johansson (Oct 12)
    - Resistance is futile, or what I learned trying to secure the scanner Blue Boar (Oct 12)
    - SECURITY: RHSA-1999:040 New PAM packages available Cristian Gafton (Oct 12)