• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Windows RPCSS Multi-thread Race Condition Vulnerability

Several sources have corroborated that the MS-DCOM-Uni.c exploit does affect patched Windows XP systems (as of MS03-039), and will trigger a denial of service condition. Also, information obtained from a reliable source has confirmed that the exploit will effectively trigger a denial of service on fully patched Windows 2000 systems.

*** An updated version of the universal exploit has been released (rpc3.zip) and it has been reported that it will effectively trigger a denial of service in patched 2k/XP/2003 systems (as recent as MS03-039). This exploit code has been verified by Symantec to successfully crash a patched Windows 2000 system over TCP/UDP port 135.

eEye Digital Security have developed working exploit code that is not publicly available or known to be circulating in the wild.

• /data/vulnerabilities/exploits/MS-DCOM-Uni.c
• /data/vulnerabilities/exploits/MS-DCOM-Uni.asm
• /data/vulnerabilities/exploits/rpc3.zip