DvilleStoner
Feb 26 2004, 09:02 AM
| QUOTE (nolimit @ Jan 30 2004, 05:56 PM) |
thier is another version of this exploit that isn't file system dependent for XP, search the forum.
This exploit would be awesome if it wasn't only FAT, any decent server uses NTFS. |
this is very true
alkausar
Feb 27 2004, 12:32 AM
anybody know where i can download the exe file? please...
toste
Mar 1 2004, 05:48 PM
int23h
Mar 1 2004, 09:04 PM
okay in the exploit from security-corporation or wherever it's from edit
| CODE |
try{
ret = (procAddress)((LPCWSTR)hostl, (LPCWSTR)szBuffer, NULL, NULL, 0);
}
catch(...)
{
} |
and make it simply
| CODE |
| ret = (procAddress)((LPCWSTR)hostl, (LPCWSTR)szBuffer, NULL, NULL, 0); |
then compile cl ms03-049-w2k.c
compiles with msvc6 but I don't understand how it works, I couldn't exploit any hosts yet
int23h
Mar 1 2004, 09:06 PM
it's a bindshell shellcode right? I think my own box is patched so I can't test it
usch
Mar 2 2004, 01:34 PM
i tested it on many boxes,leaving ma anonymous ftp server running,but it didn`t show any logs.tested 20 ip`s all checked as vulnerable with xscan but didn`t work.i don`t like the sploit
alkausar
Mar 2 2004, 11:28 PM
uhh.... work only on my LAN,
[eXPhase
Mar 3 2004, 12:15 PM
I've also been trying this sploit, but didn't exploit anything at all
Anyone just had one single shell with it?
Btw. I also scan with that chinese X-Scan
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
