LLSSRV Clarifications <Immunity>

From: Dave Aitel (dave_at_immunitysec.com)
Date: 03/16/05

  • Next message: Mandrakelinux Security Team: "MDKSA-2005:059 - Updated evolution packages fix crasher"
    Date: Wed, 16 Mar 2005 17:08:57 -0500
    To: bugtraq@securityfocus.com
    
    

    Immunity is happy to announce the release from VSC of a new paper to our
    public website regarding the technical details of the llssrv
    vulnerability Microsoft released on February 8th, 2005. Along with this
    paper, we've released a reliable, language-independant exploit to the
    CANVAS distribution.

    As stated in MS05-010, LLSSRV is not remotely exploitable on Windows
    2000 Server SP3 and 4 without authentication. However, it is remotely
    exploitable in Windows 2000 Advanced Server SP 3 and 4 without
    authentication. This information, missing from MS05-010, is a perfect
    example as to why fully independant third party security information and
    exploit code provide a key link in an organization's ability to
    understand and evaluate the risk posted by vulnerabilities.

    Further details, vulnerability release scheduling, and other information
    are available here:
    http://www.immunitysec.com/resources-advisories.shtml

    Thanks,
    Dave Aitel
    Immunity, Inc.


  • Next message: Mandrakelinux Security Team: "MDKSA-2005:059 - Updated evolution packages fix crasher"

    Relevant Pages

    • [Full-disclosure] LLSSRV Clarifications from Immunity
      ... public website regarding the technical details of the llssrv ... LLSSRV is not remotely exploitable on Windows ... 2000 Server SP3 and 4 without authentication. ... Further details, vulnerability release scheduling, and other information ...
      (Full-Disclosure)
    • [VulnWatch] LLSSRV Clarifications [Immunity]
      ... public website regarding the technical details of the llssrv ... LLSSRV is not remotely exploitable on Windows ... 2000 Server SP3 and 4 without authentication. ... Further details, vulnerability release scheduling, and other information ...
      (VulnWatch)
    • [NEWS] LDAP and VPN Vulnerabilities in PIX and ASA Appliances
      ... LDAP and VPN Vulnerabilities in PIX and ASA Appliances ... The Lightweight Directory Access Protocol authentication bypass ... Denial of Service in VPNs with Password Expiry ... LDAP Authentication Bypass Vulnerability ...
      (Securiteam)
    • RUS-CERT Advisory 2001-08:01
      ... Vulnerabilities in several Apache authentication modules ... vulnerable to a remote SQL code injection attack. ... SQL statements or cause the database query for the password to return ... In the MySQL and Oracle cases, the impact of the vulnerability is ...
      (Bugtraq)
    • asp.net vulnerability
      ... From: Windows NTBugtraq Mailing List ... More details on ASP.NET vulnerability ... There has been some confusion with the ASP.NET forms authentication issue ... authorization issue, not an authentication issue. ...
      (microsoft.public.sharepoint.portalserver)