[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.58.0310091514000.887@manetheren>
From: pab at heisec.de (Patrick Brauch)
Subject: MS RPC remote exploit.
On Thu, 9 Oct 2003, Sudharsha Wijesinghe wrote:
> According to MS there cant be any Remote exploit on MS RPC except for a
> DOS attack using 139/135/445.
Where did they say so?
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp
"Impact of vulnerability: Three new vulnerabilities, the most serious of
which could enable an attacker to run arbitrary code on a user\x{2019}s
system."
cheers,
--
Patrick Brauch <pab@...sec.de>
heise security http://www.heisec.de
c't Magazin fuer Computertechnik http://www.heise.de/ct
PGP-Fingerprint: 8366 03AC D702 F2BB C617 E6BC 1811 950E
Powered by blists - more mailing lists