|
Vulnerability Development
mailing list archives
Re: (pointless?) overflow in tftp.exe (Was: Re: twlc advisory: possible overflow in ms ftp client)
From: "Robert Freeman" <freem100 () chapman edu>
Date: Sat, 4 Nov 2000 03:57:48 -0800
From my experience, without an active monitoring agent, any process may
request a legal system reboot. A more efficient method would be to use
malicious code to reboot, blue screen, or black screen (yes, black screen!).
I haven't continued virii-esque development past NT4 SP6, but I imagine the
techniques would still work as well as pass right through any monitoring
agent. I have a lot of free time these days so I might see what I can cook
up for 2000/XP.
regards.
----- Original Message -----
From: "Lincoln Yeoh" <lyeoh () pop jaring my>
To: <foob () return0 net>; <supergate () twlc net>
Cc: <vuln-dev () securityfocus com>
Sent: Friday, November 02, 2001 6:35 PM
Subject: Re: (pointless?) overflow in tftp.exe (Was: Re: twlc advisory:
possible overflow in ms ftp client)
Is it possible to use it shutdown those Code Red/Nimda NT servers
remotely?
Does IIS by default have enough permissions to shutdown the whole computer
or must it do some set privilege thing?
Cheerio,
Link.
----------------------------------------------------
Sign Up for NetZero Platinum Today
Only $9.95 per month!
http://my.netzero.net/s/signup?r=platinum&refcd=PT97
 By Date 
By Thread
Current thread:
- Re: twlc advisory: possible overflow in ms ftp client, (continued)
| 
Intro
