Re: Vulnerability Report For Microsoft Windows NT 4.0 MSTask.exec odeerror

[Rob Terry <RTerry () EXCEL COM>]

Uhmm..

Two things:

MSTASK.EXE is installed by IE5. Just did it, so I know.

It is in fact a replacement for the task scheduler, originally the scheduler
service. It changes the registry of the service from Scheduler to Task
Scheduler, and switches itself to auto. So if we can find out what this
problem is, and get to a point where we can fundamentally reproduce it, then
if a script can be installed locally and made to do this at every boot, not
one Who in Whooville trying to use that NT machine would be happy.

But even now, after installing just plain old IE5, I can't make the system
lock up by connecting to any of the 10xx ports that will talk to me.




-----Original Message-----
From: John Herron [mailto:john.herron () RRC STATE TX US]
Sent: Friday, December 15, 2000 2:32 PM
To: BUGTRAQ () SECURITYFOCUS COM
Subject: Re: Vulnerability Report For Microsoft Windows NT 4.0
MSTask.execodeerror


Not sure why, but I'm trying it on any ports I have available (the ones
simular
to yours are 1026, 1028, and 1029.  1026 won't connect, 1029 won't connect
1028 does connect and accepts any data I shoot at it but it never crashes
and no processes even seem to notice my presence.  I'm running NT 4.0, SP5
also.  Is there a certain service you two are running?