Domain: lsd-pl.net
Stories and comments across the archive that link to lsd-pl.net.
Comments · 7
-
A small question
Does it have anything in common with the bug in Windows discovered by Polish group.
-
Why was there no mention of the RPC flaw?The Last Stage of Delirium Research Group (LSD) has announced and Microsoft has confirmed and released patches for a critical flaw in the RPC Interface implementation in all recent versions of Windows. This includes NT 4.0, 2000, XP and Server 2003 (regardless of the service packs installed). As reviewed in this TechTarget article, the exploit creates a buffer overflow that could allow remote attackers to run commands with the highest system privileges. Applying the new patch and/or blocking port 135 (turned on by default on many Windows systems) are the solutions.
LSD has produced two proof of concept exploit codes (which they have not released)which they were able to get to work even with Server 2003 and it's new buffer overflow prevention mechanism. The nature of the flaw makes it ripe for exploitation by a worm.
As discussed here, the reports are unusually embarrassing as they affect Server 2003, Microsoft's most powerful and safest software yet. It is ironic that the announcement comes one day after the Homeland Security Department announced that it awarded a five-year, $90-million contract for Microsoft to supply all its most important desktop and server software for about 140,000 computers inside the new federal agency.
-
Re:More info and POC ...
This is the relevent link at lsd-pl.net not the link the parent posted.. as stated in the securityfocus.com (BugTraq) article proof of consept has been with held at this time here
Responsible disclosure sucks -
Last Stage of Delirium Research Group
The guys that found this vulnerability have an amusing web site. It looks rather professional for the underground (?) community. I bet the wear white coats while they hack.
-
More info and POC ...
-
More info and POC ...
-
More info and POC ...