BugTraq
Back to list
|
Post reply
Re: Microsoft ASN.1 (Half a sploit)
Feb 17 2004 05:38AM
WebHead (webheadport80 yahoo com)
(1 replies)
In-Reply-To: <20040215130958.17364.qmail (at) www.securityfocus (dot) com [email concealed]>
FYI...
The DoS exploit for ms04-007 works successfully on WS03 /W2K3 and W2K AdvServer with SP3.
WebHead
>Received: (qmail 15182 invoked from network); 16 Feb 2004 16:42:00 -0000
>Received: from outgoing3.securityfocus.com (205.206.231.27)
> by mail.securityfocus.com with SMTP; 16 Feb 2004 16:42:00 -0000
>Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20])
> by outgoing3.securityfocus.com (Postfix) with QMQP
> id 7F664A30D6; Mon, 16 Feb 2004 11:09:14 -0700 (MST)
>Mailing-List: contact bugtraq-help (at) securityfocus (dot) com [email concealed]; run by ezmlm
>Precedence: bulk
>List-Id: <bugtraq.list-id.securityfocus.com>
>List-Post: <mailto:bugtraq (at) securityfocus (dot) com [email concealed]>
>List-Help: <mailto:bugtraq-help (at) securityfocus (dot) com [email concealed]>
>List-Unsubscribe: <mailto:bugtraq-unsubscribe (at) securityfocus (dot) com [email concealed]>
>List-Subscribe: <mailto:bugtraq-subscribe (at) securityfocus (dot) com [email concealed]>
>Delivered-To: mailing list bugtraq (at) securityfocus (dot) com [email concealed]
>Delivered-To: moderator for bugtraq (at) securityfocus (dot) com [email concealed]
>Received: (qmail 20023 invoked from network); 15 Feb 2004 07:01:17 -0000
>Date: 15 Feb 2004 13:09:58 -0000
>Message-ID: <20040215130958.17364.qmail (at) www.securityfocus (dot) com [email concealed]>
>Content-Type: text/plain
>Content-Disposition: inline
>Content-Transfer-Encoding: binary
>MIME-Version: 1.0
>X-Mailer: MIME-tools 5.411 (Entity 5.404)
>From: K-OTiK Security <Special-Alerts (at) k-otik (dot) com [email concealed]>
>To: bugtraq (at) securityfocus (dot) com [email concealed]
>Subject: Re: Microsoft ASN.1 (Half a sploit)
>
>In-Reply-To: <200402132315.i1DNFYAa067379 (at) mailserver1.hushmail (dot) com [email concealed]>
>
>Note that the SANS said "This Exploit appears to work only against Windows 2000 Professional..."
>
>We say : works against Windows 2000 & Windows XP
>
>other versions ? 2k3 ?
>
>References
>http://www.k-otik.com/exploits/02.14.MS04-007-dos.c.php
>http://isc.sans.org/diary.html
>
>Regards.
>K-OTik Staff
>http://www.k-otik.com
>
>
>
[ reply ]
Re: Microsoft ASN.1 (Half a sploit)
Feb 18 2004 05:56PM
Joshua Levitsky (jlevitsk joshie com)
Privacy Statement
Copyright 2010, SecurityFocus
FYI...
The DoS exploit for ms04-007 works successfully on WS03 /W2K3 and W2K AdvServer with SP3.
WebHead
>Received: (qmail 15182 invoked from network); 16 Feb 2004 16:42:00 -0000
>Received: from outgoing3.securityfocus.com (205.206.231.27)
> by mail.securityfocus.com with SMTP; 16 Feb 2004 16:42:00 -0000
>Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20])
> by outgoing3.securityfocus.com (Postfix) with QMQP
> id 7F664A30D6; Mon, 16 Feb 2004 11:09:14 -0700 (MST)
>Mailing-List: contact bugtraq-help (at) securityfocus (dot) com [email concealed]; run by ezmlm
>Precedence: bulk
>List-Id: <bugtraq.list-id.securityfocus.com>
>List-Post: <mailto:bugtraq (at) securityfocus (dot) com [email concealed]>
>List-Help: <mailto:bugtraq-help (at) securityfocus (dot) com [email concealed]>
>List-Unsubscribe: <mailto:bugtraq-unsubscribe (at) securityfocus (dot) com [email concealed]>
>List-Subscribe: <mailto:bugtraq-subscribe (at) securityfocus (dot) com [email concealed]>
>Delivered-To: mailing list bugtraq (at) securityfocus (dot) com [email concealed]
>Delivered-To: moderator for bugtraq (at) securityfocus (dot) com [email concealed]
>Received: (qmail 20023 invoked from network); 15 Feb 2004 07:01:17 -0000
>Date: 15 Feb 2004 13:09:58 -0000
>Message-ID: <20040215130958.17364.qmail (at) www.securityfocus (dot) com [email concealed]>
>Content-Type: text/plain
>Content-Disposition: inline
>Content-Transfer-Encoding: binary
>MIME-Version: 1.0
>X-Mailer: MIME-tools 5.411 (Entity 5.404)
>From: K-OTiK Security <Special-Alerts (at) k-otik (dot) com [email concealed]>
>To: bugtraq (at) securityfocus (dot) com [email concealed]
>Subject: Re: Microsoft ASN.1 (Half a sploit)
>
>In-Reply-To: <200402132315.i1DNFYAa067379 (at) mailserver1.hushmail (dot) com [email concealed]>
>
>Note that the SANS said "This Exploit appears to work only against Windows 2000 Professional..."
>
>We say : works against Windows 2000 & Windows XP
>
>other versions ? 2k3 ?
>
>References
>http://www.k-otik.com/exploits/02.14.MS04-007-dos.c.php
>http://isc.sans.org/diary.html
>
>Regards.
>K-OTik Staff
>http://www.k-otik.com
>
>
>
[ reply ]