Metasploit mailing list archives
ms04_031_netdde
From: hdm at metasploit.com (H D Moore)
Date: Wed, 28 Feb 2007 03:04:02 -0600
This depends on the configuration of the server -- IIRC, Windows XP SP0 is vulnerable without a username/password combination, but only if Simple File Sharing is activated. Pusscat wrote this exploit, so you might want to ask her what the requirements are. -HD On Tuesday 27 February 2007 22:48, Alexander Sotirov wrote:
This seems to imply that no authentication is necessary, but the exploit doesn't work with an anonymous connection. When I run ms04_031_netdde I get:
Current thread:
- ms04_031_netdde Alexander Sotirov (Feb 27)
- ms04_031_netdde Jerome Athias (Feb 27)
- ms04_031_netdde mmiller at hick.org (Feb 27)
- ms04_031_netdde Jerome Athias (Feb 27)
- ms04_031_netdde H D Moore (Feb 28)
- ms04_031_netdde Pusscat (Feb 28)
- ms04_031_netdde Nicolas Pouvesle (Feb 28)
- ms04_031_netdde Jerome Athias (Feb 27)