Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Re: RE: Re: Bad news on RPC DCOM vulnerability
From: "Alex" <pk95 () yandex ru>
Date: Mon, 13 Oct 2003 08:32:37 +0400
RE: Re: Bad news on RPC DCOM vulnerabilityThis code doesn't work without shellcode. The simple version of a "battle" 
shellcode can be found here:

http://www.SecurityLab.ru/_exploits/bshell2 (add user 'a' with pass 'a' in administrator group)

You can change this shellcode as you need.

On system with MS03-39 installed, this code only crash systems, because nature of new vulnerability is not known.

See more: http://www.securitylab.ru/40757.html



  ----- Original Message ----- 
  From: Mike Gordon 
  To: full-disclosure () lists netsys com 
  Sent: Monday, October 13, 2003 1:41 AM
  Subject: [Full-disclosure] RE: Re: Bad news on RPC DCOM vulnerability


  A compiled version is found at http://www.SecurityLab.ru/_exploits/rpc3.zip 
  But it seems to only crash systems. 

  Does any one have a clean complile of the "better code" from http://www.cyberphreak.ch/sploitz/MS03-039.txt

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]