Have you SPIKE'd your DCE Endpoint mapper? The Unix versions I've tested with the tool that found this bug (http://www.immunitysec.com/spike.html) all fall over just as quickly, if not more quickly.
This is not a new bug. As the original discoverer of that bug, and [linux binary] this other unpatched bug against port 445 on Windows 2000, I can say that these bugs are, in fact, months and months old. Not to mention another kernel memory leak in port 445 (their netbios stack) I found and released with SPIKE 2.8 a GPLed program for finding these sorts of issues.
The real issue with Windows is not that they don't patch these bugs - it's that they didn't foresee these bugs. The fact that a pooly implemented, and impossible to understand, DCE-RPC stack is built so heavily into the NT architecture is Window's inherent security weakness compared with Unix, in my opinion.
Don't think I don't have more bugs waiting in the wings...:>
pyGTK with Glade is the EASIEST GUI toolkit. It may not be the "best" but I've built a commercial, cross platform application using it (here is a screenshot) and I am a complete retard at GUIs. It took a total of 2 weeks - from complete scratch. Porting it to Windows for my customers is just a matter of installing a few simple.exe's - they are used to that anyways. Because the GUI is actually a.glade XML file, I don't have to write any code at all every time I change it. It just makes more sense than having to worry about integrating your entire IDE into a GUI builder!
Which is why each advisory is signed with a hushmail GPG key, I assume. I don't have any of the other recent GOBBLES advisories either, since I've been busy doing other things.
No, it's just I have a slow business DSL connection from Qwest. I'm curious to see how Zope handles the load anyways. I've actually had problems with Zope recently corrupting large files as they get transfered. (Yuck). The front end is Apache 2.0 though, which as we know is the best webserver on the planet.
If you want to see some actual good GPL software also hosted on this site, you can check out SPIKE . SPIKE is unique, and SPIKE Proxy is uniquely good. (imho):>
Re:I can see ho wthis may appeal to women .... but
on
Metaverse Launched?
·
· Score: 1
How many girls do you know with NVidia cards, or the desire to go out and buy and NVidia card?
That market you're talking about is using laptops from work, or a cheapie Gateway. They aren't going to be rushing out to buy and install NVidia's any time soon.
Besides, someone already invented the way that market "chats." It's called the phone.
-dave
Linux with transcode and kino (http://kino.schirmacher.de/) along with some free shared libraries from DivX.com creates videos a hundred times better quality than any video ever produced with iMovie. And it doesn't encumber them in Quicksand^h^h^h^htime.
Why exactly, does the world feel entitled to control the results of research it did not pay for, and had nothing to do with? To wit, why would I, as a security researcher (see my web page for some examples) give away for free the results of my research to Microsoft, Sun, IBM, or any other company, when doing that research cost me significant time and money?
The era of software vendors getting research for free is over. Now, they get it when everyone else gets it - whenever I have the spare time and energy to explain it in small words, or whenever they pay me money to do so, whichever comes first.
I think you'll see more and more small consulting companies and independant researchers moving towards this policy. We don't need the "fame" from having a one line attribution in a vendor's advisory, and we have more lucrative things to do than explain every little aspect of our research to an ungrateful and frankly hostile vendor's "security response" staff.
Call (202) 225-7944 if you live in 10009 (14th District NY) and let them know you support it. Be nice, just ask for their position and say that you support it.
Grab SPIKE Proxy (written in Python) from here and if it doesn't do exactly what you want (it doesn't do anything totally automated at this point, since it is primarally a security tool) then quickly modify it to do what you want.
The advantage to using an open source tool for doing this, rather than something sold by Rational, is that if you don't have a completely "normal" application, you can modify SPIKE Proxy in a few seconds to support whatever weird syntax you use. And by sending me patches and making SPIKE Proxy better (keep in mind this is the second python script I ever wrote) you help the whole community.
Slashdot Mirror
I believe this is their number... Attention: Piracy Enforcement Ãââoe DMCA Officer Telephone: 202-223-2400 Fax: 202-223-2401 E-mail: dmca@idsa.com
Dave Aitel
Immunity,Inc.
Dave Aitel
The real issue with Windows is not that they don't patch these bugs - it's that they didn't foresee these bugs. The fact that a pooly implemented, and impossible to understand, DCE-RPC stack is built so heavily into the NT architecture is Window's inherent security weakness compared with Unix, in my opinion.
Don't think I don't have more bugs waiting in the wings...:>
pyGTK with Glade is the EASIEST GUI toolkit. It may not be the "best" but I've built a commercial, cross platform application using it (here is a screenshot) and I am a complete retard at GUIs. It took a total of 2 weeks - from complete scratch. Porting it to Windows for my customers is just a matter of installing a few simple .exe's - they are used to that anyways. Because the GUI is actually a .glade XML file, I don't have to write any code at all every time I change it. It just makes more sense than having to worry about integrating your entire IDE into a GUI builder!
Which is why each advisory is signed with a hushmail GPG key, I assume. I don't have any of the other recent GOBBLES advisories either, since I've been busy doing other things.
Click on that picture. It's a link.
Geeze, you have to walk people through EVERYTHING these days.
Dave Aitel
Immunity,Inc.
It runs Apache 2.0 and Zope on a PaXified custom system, fyi.
Dave Aitel
Immunity, Inc.
http://www.immunitysec.com/
If you want to see some actual good GPL software also hosted on this site, you can check out SPIKE . SPIKE is unique, and SPIKE Proxy is uniquely good. (imho):>
Dave Aitel
Immunity, Inc.
http://www.immunitysec.com/GOBBLES/. I'm not yet hosting their latest files, however.
How many girls do you know with NVidia cards, or the desire to go out and buy and NVidia card? That market you're talking about is using laptops from work, or a cheapie Gateway. They aren't going to be rushing out to buy and install NVidia's any time soon. Besides, someone already invented the way that market "chats." It's called the phone. -dave
Linux with transcode and kino (http://kino.schirmacher.de/) along with some free shared libraries from DivX.com creates videos a hundred times better quality than any video ever produced with iMovie. And it doesn't encumber them in Quicksand^h^h^h^htime.
-dave
Why exactly, does the world feel entitled to control the results of research it did not pay for, and had nothing to do with? To wit, why would I, as a security researcher (see my web page for some examples) give away for free the results of my research to Microsoft, Sun, IBM, or any other company, when doing that research cost me significant time and money? The era of software vendors getting research for free is over. Now, they get it when everyone else gets it - whenever I have the spare time and energy to explain it in small words, or whenever they pay me money to do so, whichever comes first. I think you'll see more and more small consulting companies and independant researchers moving towards this policy. We don't need the "fame" from having a one line attribution in a vendor's advisory, and we have more lucrative things to do than explain every little aspect of our research to an ungrateful and frankly hostile vendor's "security response" staff.
Call (202) 225-7944 if you live in 10009 (14th District NY) and let them know you support it. Be nice, just ask for their position and say that you support it.
Check it out here. -dave
The advantage to using an open source tool for doing this, rather than something sold by Rational, is that if you don't have a completely "normal" application, you can modify SPIKE Proxy in a few seconds to support whatever weird syntax you use. And by sending me patches and making SPIKE Proxy better (keep in mind this is the second python script I ever wrote) you help the whole community.
here
This vulnerability, a stack overflow in the initial packet to TCP/1433 allows an attacker access to the target system as LOCAL/SYSTEM ("root").
-dave