[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <E1BDaYG-0003W1-00@protactinium.btinternet.com>
From: r_i_c_h_lists at btopenworld.com (Richard Maudsley)
Subject: LSASS.EXE Remote Buffer Overflow Investigation
Hello list,
Regarding [Full-Disclosure] EEYE: Windows Local Security Authority Service
Remote Buffer Overflow
(http://archives.neohapsis.com/archives/fulldisclosure/2004-03/1994.html).
None of my systems (XP Pro, 2K, 2K3 Server) had this log file
("DCPROMO.LOG") in their %WINDOWS%\Debug directorys. I'm guessing this is
because the logging functions have never been called.
How is this (and the other affected commands) executed remotly?
Thanks,
-Rich
Powered by blists - more mailing lists