lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <002c01c37353$24de3cd0$6e00a8c0@naglfar>
Date: Thu, 4 Sep 2003 22:12:22 -0400
From: "Andrew Ruef" <jabberwocky@...iasoft.net>
To: <bugtraq@...urityfocus.com>
Subject: RE: Microsoft Security Update


It sort of seems similar to etherleak but minus the horrible part. I
don't know what part of memory it would return, but I think because of
the nature of the service it could return areas of protected memory. 

A. Ruef

-----Original Message-----
From: Luke Smith [mailto:luke@...th.name] 
Sent: Thursday, September 04, 2003 6:54 PM
To: 'Thor Larholm'; bugtraq@...urityfocus.com
Subject: RE: Microsoft Security Update


>MS03-034 (NetBIOS information disclosure) gets a rating of Low, even
though
>Blaster showed us just how many Windows installations run with all
ports
>accessible.

http://www.microsoft.com/technet/treeview/?url=/technet/security/bulleti
n/MS03-034.asp

"Under certain conditions, the response to a NetBT Name Service query
may, in addition to the typical reply, contain random data from the
target system's memory. This data could, for example, be a segment of
HTML if the user on the target system was using an Internet browser, or
it could contain other types of data that exist in memory at the time
that the target system responds to the NetBT Name Service query."

It's not something you could directly own the box with, unlike RPC vuln
that Blaster uses; it merely exposes some trivia, thus the "low" rating.

Cheers,

Luke Smith



________________________________________________________________________
This email has been scanned for all viruses by the MessageLabs Email
Security System. For more information on a proactive email security
service working around the clock, around the globe, visit
http://www.messagelabs.com
________________________________________________________________________



Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ