RE: [Full-Disclosure] Windows (XP SP2) Remote code execution with parameters
From: Goencz, Otto (OGoencz_at_ghi.com)
Date: 12/28/04
- Previous message: Des Ward: "[Full-Disclosure] Happy new year"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: ShredderSub7 SecExpert <shreddersub7@hotmail.com>, full-disclosure@lists.netsys.com Date: Tue, 28 Dec 2004 08:22:21 -0500
On my box, WinXP with SP2, the PoC worked as described...
-----Original Message-----
From: ShredderSub7 SecExpert [mailto:shreddersub7@hotmail.com]
Sent: Monday, December 27, 2004 7:24 PM
To: full-disclosure@lists.netsys.com
Subject: [Full-Disclosure] Windows (XP SP2) Remote code execution with
parameters
PoC (called CMDExe): http://www.freewebs.com/shreddersub7/htm.htm
Discussion: http://www.freewebs.com/shreddersub7/expl-discuss.htm
------------------Which systems are vulnerable?--------
Any system running any Microsoft Windows XP edition with Internet Explorer 6
or higher, even with SP2 applied.
Any system running any Microsoft Windows Server 2003 edition with Internet
Explorer 6 or higher.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Des Ward: "[Full-Disclosure] Happy new year"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
