Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure: RE: DCOM Exploit MS03-026 attack vectors

RE: DCOM Exploit MS03-026 attack vectors

From: Bassett, Mark <mbassett_at_omaha.com>
Date: Fri, 1 Aug 2003 09:04:00 -0500

>Well, it is the most widely supported default interface that is
>vulnerable. It would be a very unusual machine that is vulnerable on
>some other port and _NOT_ on 135, so what is the payoff for writing an
>exploit (at least a "prrof of concept") that tries other ports?

Because 9 times out of 10 port 135 is blocked by some sort of firewall,
whilst port 80 is not blocked on a web server.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Aug 01 2003

This message: [ Message body ]
Next message: Bassett, Mark: "RE: Re: Re: rpcdcom Universal offsets"
Previous message: Christian Poersch: "[Full-Disclosure] Betr:Full-disclosure digest, Vol 1 #993 - 32 msgs"
Maybe in reply to: Brad Bemis: "RE: DCOM Exploit MS03-026 attack vectors"
Next in thread: Bryan K. Watson: "RE: DCOM Exploit MS03-026 attack vectors"
Reply: Bryan K. Watson: "RE: DCOM Exploit MS03-026 attack vectors"
Reply: Nick FitzGerald: "RE: DCOM Exploit MS03-026 attack vectors"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]