[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Internet Explorer 0-Day

To: "Aaron J. Bedra" <abedra@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Internet Explorer 0-Day
From: "milw0rm Inc." <milw0rm@xxxxxxxxx>
Date: Thu, 18 Aug 2005 11:31:12 -0500

Who here has actually made this bug work tested on 10 machines with nothing.

msdss.dll (what dll info if so)

/str0ke

On 8/18/05, Aaron J. Bedra <abedra@xxxxxxxxxxxxxxxxxxxxxx> wrote:
> Just use netcat to listen for a shell from that port on that machine. I
> have tried this already, and it all works out.
> 
> Thanks for the orig proof of concept shellcode!
> 
> Aaron J. Bedra
> 
> 
> 
> 
> On Thu, 2005-08-18 at 11:51 -0400, Ragone_Andrew wrote:
> > Once you hit a system with msdss.dll with the code on FrSIRT, how
> > would you access the shell. I am assuming
> >
> >         telnet [ip  addr] 28876
> >
> >
> > -Andrew
> >
> >
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Zotob Worm Remover
  - From: Ill will

References:
- [Full-disclosure] Internet Explorer 0-Day
  - From: houser
- Re: [Full-disclosure] Internet Explorer 0-Day
  - From: Ragone_Andrew
- Re: [Full-disclosure] Internet Explorer 0-Day
  - From: Aaron J. Bedra

Prev by Date: [Full-disclosure] Multiple directory traversal vulnerabilities in Claroline ... NOT
Next by Date: Re: [Full-disclosure] Juniper Netscreen VPN Username Enumeration Vulnerability
Previous by thread: Re: [Full-disclosure] Internet Explorer 0-Day
Next by thread: Re: [Full-disclosure] Zotob Worm Remover
Index(es):
- Date
- Thread