Increasing compromises of NT servers with Serv-U and Unicode ?

From: pj@esec.dk
Date: 07/25/02

• Previous message: ilker : "Bind 9.2.X exploit???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

To: incidents@securityfocus.com
From: pj@esec.dk
Date: Thu, 25 Jul 2002 10:51:37 +0200

Marko Muncan wrote on 22/7:
                                                                            
                                                                            
                                                                            
>Is it correct that the last weeks more an more "Serv-U exploits" or
  exploits
>which install the app on W2K Systems appear?
                                                                            
                                                                            

We have made the same observation and compiled some data about the scan
and apparent "Pubstro" background in
http://www.esec.dk/pubstro.pdf

best regards

Peter Jelver

eSec A/S

..................................................................................

PGP Fingerprint : 47AF FFEC D48F 9C13 0C4F E687 BB8A 128F D85C A7D7

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com

---

• Previous message: ilker : "Bind 9.2.X exploit???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: ClickOnce Nightmares ... your app need to install the settings. ... LAN) you could create a logon script that will automatically install the ... DownloadOptions options, ServerInformation& serverInformation) ... FileAccess access, Boolean asyncHint) ... (microsoft.public.dotnet.framework) Re: Saving Back-End Data As mdf ... complete code of a VB.NET console app. ... It's just an example to illustrate how a connection string is used. ... so it doesn't appear to be a problem with how or what I install. ... you access to the Microsoft Office Online Beta site'. ... (microsoft.public.access.formscoding) Re: Run 10.20 App on 11.00 ? ... installed on both machines using the vendor's install scripts. ... > if the app links in libc.a then you basically up the creek because you have ... Use chatr to see what the dependent libraries are. ... an industrial control system made by Fisher Control Systems. ... (comp.sys.hp.hpux) Re: Windows XP auto updates stinks!! ... just use one exploit whereas you have to test all patches. ... you needn't install them. ... so I ignore any updates to it. ... you install an incompatible app ... (microsoft.public.windowsxp.general) QRe: Legacy Access 2 VB 4 app, Word 11 merge on XP Pro SP2 client ... I would simply write a short interim app as ... The legacy application was developed ... they are presented with a window containing a ... In addition the install would not self register the following: ... (microsoft.public.access.conversion)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > incidents  > 2002-07