"MS03-026 RPC Vulnerability" command-line scanning

From: issadvisor (issadvisor_at_issadvisor.com)
Date: 07/29/03

Next message: Rob Slade, doting grandpa of Ryan and Trevor: "REVIEW: "A Guide to Forensic Testimony", Fred Chris Smith/Rebecca Gurley Bace"
Previous message: JWMeritt: "ISSMP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 29 Jul 2003 09:09:27 -0700

X-Force just released a lightweight command-line tool to look for
systems vulnerable to the RPC DCOM vulnerability. It's pretty nice
because it doesn't require domain creds to look for the patch, and it
won't DoS your boxes. For more info:

http://www.iss.net/support/product_utilities/

Next message: Rob Slade, doting grandpa of Ryan and Trevor: "REVIEW: "A Guide to Forensic Testimony", Fred Chris Smith/Rebecca Gurley Bace"
Previous message: JWMeritt: "ISSMP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: rumours about new RPC DCOM vulnerability
... the hacker that got me used 3 or 4 programs and 2 ... that patch DID fix everything it was supposed to. ... >> RPC DCOM vulnerability that is not fixed with patch ...
(microsoft.public.security)
Re: rumours about new RPC DCOM vulnerability
... patched machines might lock up or reboot when attacked with this. ... remote code execution type of buffer overflow, which could then be used to ... also that this issue is not exactly related to the MS03-039 patch. ... > RPC DCOM vulnerability that is not fixed with patch 824146 ...
(microsoft.public.security)
rumours about new RPC DCOM vulnerability
... Several websites on the net mention that there is a new ... RPC DCOM vulnerability that is not fixed with patch 824146 ... which came with security bulletin MS03-039. ...
(microsoft.public.security)