Full Disclosure: RE: DCOM Exploit MS03-026 attack vectors

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

RE: DCOM Exploit MS03-026 attack vectors

From: "Bassett, Mark" <mbassett () omaha com>
Date: Fri, 1 Aug 2003 09:04:00 -0500

Well, it is the most widely supported default interface that is 
vulnerable.  It would be a very unusual machine that is vulnerable on 
some other port and _NOT_ on 135, so what is the payoff for writing an 
exploit (at least a "prrof of concept") that tries other ports?


Because 9 times out of 10 port 135 is blocked by some sort of firewall,
whilst port 80 is not blocked on a web server.  

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

RE: DCOM Exploit MS03-026 attack vectors, (continued)
- RE: DCOM Exploit MS03-026 attack vectors Jasper Blackwell (Jul 31)
  - Re: RE: DCOM Exploit MS03-026 attack vectors Richard Spiers (Aug 01)
    - Re: RE: DCOM Exploit MS03-026 attack vectors Geoincidents (Aug 02)
- RE: RE: DCOM Exploit MS03-026 attack vectors Parker, Jeff (MSE) (Aug 01)
- RE: DCOM Exploit MS03-026 attack vectors Bassett, Mark (Aug 01)
  - RE: DCOM Exploit MS03-026 attack vectors Bryan K. Watson (Aug 01)
    - Re: DCOM Exploit MS03-026 attack vectors Jeremiah Cornelius (Aug 01)
    - Re: DCOM Exploit MS03-026 attack vectors Ron DuFresne (Aug 02)
  - RE: DCOM Exploit MS03-026 attack vectors Nick FitzGerald (Aug 02)