• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft RPCSS DCERPC DCOM Object Activation Packet Length Heap Corruption Vulnerability

CORE has developed a working commercial exploit for their IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

It should be noted that eEye has developed an exploit for this issue, however it has not been made publicly available.

Further analysis of the exploit previously available here, has concluded that it is actually for the long filename heap overflow described in BID 8459.

** UPDATE: Exploit activity for this vulnerability has been observed by a Symantec DeepSight honeypot.

• /data/vulnerabilities/exploits/MS-DCOM-Uni.c
• /data/vulnerabilities/exploits/MS-DCOM-Uni.asm
• /data/vulnerabilities/exploits/MS-DCOM-Uni.asm