lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <NMEAJDJMDLJLOIOCIKJJKEOFDMAA.exibar@thelair.com>
From: exibar at thelair.com (Exibar)
Subject: [inbox] Re: MS03-039 has been released (DoS) sploit ?

Sure looks that way, especially with the 7/21 datestamp for the directory
and in the page name :-)

  It's *very* unlikely that we see a worm that acts on the DoS vuln, it's
just too much work.  The BoF's are the ones that has my attention and need
to patch urgently.

  Exibar
  -----Original Message-----
  From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com]On Behalf Of Elv1S
  Sent: Wednesday, September 10, 2003 6:49 PM
  To: full-disclosure@...ts.netsys.com
  Subject: [inbox] [Full-Disclosure] Re: MS03-039 has been released (DoS)
sploit ?


  thinkin' that they talking about the xfocus sploit public since 07-21 ?
for the DoS vuln MS03-032

  true or not ?

  http://www.k-otik.com/exploits/07.21.win2kdos.c.php


  Mike Tancsa <mike@...tex.net> wrote:

    http://xforce.iss.net/xforce/alerts/id/152 says,

    "The new DoS vulnerability was disclosed by a hacking group in China on
    July 25, 2003, and functional exploit code is already in use on the
    Internet. "

    ---Mike


    At 01:41 PM 10/09/2003, Exibar wrote:
    >anyone know of a 'sploit for this one yet? Or even proof of concept
code?
    >
    >
    >----- Original Message -----
    >From: "Ryan, Pete"
    >To:
    >Sent: Wednesday, September 10, 2003 12:23 PM
    >Subject: [Full-Disclosure] MS03-039 has been released - critical
    >
    >
    > >
    > >

>http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security
/
    > > bulletin/MS03-039.asp
    > >
    > > -Pete
    > >
    > > _______________________________________________
    > > Full-Disclosure - We believe in it.
    > > Charter: http://lists.netsys.com/full-disclosure-charter.html
    >
    >_______________________________________________
    >Full-Disclosure - We believe in it.
    >Charter: http://lists.netsys.com/full-disclosure-charter.html

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html


----------------------------------------------------------------------------
--
  Do you Yahoo!?
  Yahoo! SiteBuilder - Free, easy-to-use web site design software
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030910/8d121ac0/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ