Full Disclosure mailing list archives
Re: DCOM RPC exploit (dcom.c)
From: Chris Paget <chrisp () ngssoftware com>
Date: Sat, 26 Jul 2003 20:16:24 -0400 (Eastern Daylight Time)
<sarcasm> I'd just like to thank FlashSky, Benjurry, and H D Moore for releasing this code. Really guys, sterling job. Now the skript kiddies and VXers have got virtually no work to do in order to write a worm that exploits this. </sarcasm> Personally, I'm tempted to set up my firewall to NAT incoming requests on port 135 to either www.metasploit.com or www.xfocus.org. I know this is the full-disclosure list, but working exploit code for an issue this huge is taking it a bit far, especially less than 2 weeks after the advisory comes out. Cheers, fellas. When the worm comes out, I'll be thinking of you. Chris On Sat, 26 Jul 2003, fulldisclosure () catholic org wrote:
03-026 working exploit ----------------------------------------- This email was sent using FREE Catholic Online Webmail. http://webmail.catholic.org/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: DCOM RPC exploit (dcom.c), (continued)
- RE: DCOM RPC exploit (dcom.c) christopher neitzert (Jul 26)
- RE: DCOM RPC exploit (dcom.c) gml (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Elvar (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Paul M. Hirsch (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Elvar (Jul 26)
- Re: DCOM RPC exploit (dcom.c) w g (Jul 26)
- RE: DCOM RPC exploit (dcom.c) christopher neitzert (Jul 26)
- RE: DCOM RPC exploit (dcom.c) christopher neitzert (Jul 26)
- Re: DCOM RPC exploit (dcom.c) hicks (Jul 26)
- Re: DCOM RPC exploit (dcom.c) christopher neitzert (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Len Rose (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Chris Paget (Jul 26)
- Re: DCOM RPC exploit (dcom.c) morning_wood (Jul 26)
- Re: DCOM RPC exploit (dcom.c) Shanphen Dawa (Jul 26)
- Re: DCOM RPC exploit (dcom.c) morning_wood (Jul 26)