Microsoft Windows LSASS Buffer Overrun Vulnerability

Exploit code has been released.

An additional exploit (HOD-ms04011-lsasrv-expl.c) has been supplied by houseofdabus.

Additional exploit code (xphack.c) also released by Jocanor.

An Exploit has been released for this issue as part of the Metasploit Framework project version 2.2. Various other exploits have been released as well. Please see the Metasploit exploits site in Web references for more information.

CORE has developed a working commercial exploit for their IMPACT
product. This exploit is not otherwise publicly available or known
to be circulating in the wild.


Privacy Statement
Copyright 2010, SecurityFocus