<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Dailydave: mqsvc fun

mqsvc fun

From: Dave Aitel <dave_at_immunitysec.com>
Date: Tue, 12 Apr 2005 15:35:45 -0400

http://www.microsoft.com/technet/security/bulletin/MS05-017.mspx

So Immunity released our exploit for mqsvc in CANVAS. It's only rated
"Important" but I think it's neat anyways. Next up, I guess Exchange (go
Mark Dowd and Ben Layer) and TCPIP.SYS. (go Neel Mehta!)

I honestly think it's weird when people talk about patch windows. Your
patch window today was 25 minutes or negative 5 years, depending on how
you look at it. Once you accept that 0day exists, you need to look into
secondary layers of defense that actually work. Whining about the amount
of exploit information available to the public is missing the point.

Dave Aitel
Immunity, Inc.

_______________________________________________
Dailydave mailing list
Dailydave_at_lists.immunitysec.com
https://lists.immunitysec.com/mailman/listinfo/dailydave
Received on Apr 12 2005

This message: [ Message body ]
Next message: robert_at_dyadsecurity.com: "Re: mqsvc fun"
Previous message: Holden Williamson: "Death of a bug (eyed individual). Or, How ohday got published."
Next in thread: robert_at_dyadsecurity.com: "Re: mqsvc fun"
Reply: robert_at_dyadsecurity.com: "Re: mqsvc fun"
Reply: Gadi Evron: "Re: mqsvc fun"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos