Microsoft Windows DNS Server Escaped Zone Name Parameter Buffer Overflow Vulnerability

Microsoft Windows DNS Server Escaped Zone Name Parameter Buffer Overflow Vulnerability

An exploit module for the Metasploit Framework is available. A reliable exploit for Windows 2000 and 2003 for members of the Immunity Partner's program is available at the following URI:

https://www.immunityinc.com/downloads/immpartners/msdnsrpc.tar

Additional exploits and proofs of concept are also available.

/data/vulnerabilities/exploits/msdns_zonename.rb
/data/vulnerabilities/exploits/23470-devcode.c
/data/vulnerabilities/exploits/23470_dnsrpc.py
/data/vulnerabilities/exploits/Microsoft_Dns_Server_Exploit.zip
/data/vulnerabilities/exploits/Microsoft_Dns_Server_Exploit_v2.1.zip
/data/vulnerabilities/exploits/dcerpc_msdns_zonename.rb
/data/vulnerabilities/exploits/smb_msdns_zonename.rb