Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Windows 2000 Remote Buffer Overflow by class101
From: "J.A. Terranson" <measl () mfn org>
Date: Sat, 23 Oct 2004 13:08:27 -0500 (CDT)

On Fri, 22 Oct 2004, Danny wrote:

"Stack based overflow, bug discovered by Luigi Auriemma
Tested working on Win2K, This public version crash on any WinXP, read
the code why.
The exploit bind a shellcode on the victim port 101."

What does Microsoft say in response?

In a news conference where Mr. Bill was approached with this very
question, he is reported to have stated that "The Windows Operating System
is the most secure piece of crap, er, um, code ever written.  Micro$loth
emphatically denies that this is anything but the most minor of issues,
and doesn't even rise to the level of threat necessary to achieve public
commentary.  Therefore, Micro$loth has no comment.  Thank you, and good


J.A. Terranson
sysadmin () mfn org

        "An ill wind is stalking
        while evil stars whir
        and all the gold apples
        go bad to the core"

        S. Plath, Temper of Time

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]