Microsoft Windows Workstation Service NetpManageIPCConnect Remote Code Execution Vulnerability

Microsoft Windows Workstation Service NetpManageIPCConnect Remote Code Execution Vulnerability

A proof-of-concept and full exploit are available to members of the Immunity Partner's program:

https://www.immunityinc.com/downloads/immpartners/ms06_070.tar
https://www.immunityinc.com/downloads/immpartners/ms06_070-2.tar
https://www.immunityinc.com/downloads/immpartners/ms06_070a.tar

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following public exploits are available:

/data/vulnerabilities/exploits/NetAPI-NetrJoinDomain2.py
/data/vulnerabilities/exploits/MS06-070_exploit.txt