| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <001601c35488$f2f65060$23029dd9@tuborg> From: kain at ircop.dk (Knud Erik Højgaard) Subject: DCOM RPC exploit failed Marcus Graf wrote: > I compiled dcom.c on linux and tried it against a > Windows 2000 SP4, german version. > > The exploit failed (maybe I need some offset adjustments for the > german version of Win2k) but after that I noticed some malfunctions: Yes, you do. Load up winhex, edit ram, attach to svchost.exe(either one will do), select kernel32.dll(for portability), click ok, click hex search, enter "FFE4", check "archive blah blah", click ok, click ok, click ok, that thing showing will be a proper return address. > - The windows explorer was not able to perform drag'n drop any more. > When I tried to drag a file somewehere nothing happened. > - The media player failed. The window came up and closed itself after > a few seconds. yeah, a pain in the ass indeed. > ... don't know what else failed... outlook express will be unable to open messages, and my mousewheel failed as well. > So even when then exploit failed it may seriously disturb the windows > functionality. A massive scan for vulnerable windows systems on the > net may become the character of an DoS attack even without any > successful exploit. Indeed. What a fine day it will be. -- kokanin
Powered by blists - more mailing lists