hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > The Archives > Public Downloads
nuorder
Jul 18 2004, 01:55 PM
based off
www.k-otik.com/exploits/07182004.ms04_022.cpp.php
and
www.microsoft.com/technet/security/bulletin/MS04-022.mspx
QUOTE
//*************************************************************
// Microsoft Windows 2K/XP Task Scheduler Vulnerability (MS04-022)
// Proof-of-Concept Exploit for English WinXP SP1
// 15 Jul 2004
//
// Running this will create a file "j.job".  When explorer.exe or any
// file-open dialog box accesses the directory containing this file,
// notepad.exe will be spawn.
//
// Greetz: snooq, sk and all guys at SIG^2 www security org sg
//
//*************************************************************


compiles fine under lcc which you can get here www.cs.virginia.edu/~lcc-win32/
Ecko
Jul 18 2004, 08:39 PM
thx 4 compiling biggrin.gif
t0bban
Jul 18 2004, 09:03 PM
Nice one.
Got any good ideas on howto use this exploit?
I want to test it at work (where I'm admin) to see what it can do. I want a real badass tongue.gif
Serhat
Jul 18 2004, 10:17 PM
I already installed the newest patches etc.. and it crashed explorer here smile.gif

Serhat
illwill
Jul 18 2004, 10:23 PM
no worky for me.. not sure if i was already patched too lazy to look
t0bban
Jul 18 2004, 10:39 PM
It didn't work here either mate.
nuorder
Jul 19 2004, 03:35 AM
works on an unpatched system
doesnt work on a patched system
and make sure task scheduler is running
JDog45
Jul 19 2004, 07:32 AM
QUOTE (nuorder @ Jul 19 2004, 03:35 AM)
and make sure task scheduler is running

ah that's the key, because I had no luck with it on my network... huh.gif
=k3Rn=
Jul 26 2004, 06:44 PM
Would be a really nice new exploit !

But this one is only a proof of concept code.
It would be great if someone could mod it so that it spawn a shell ! =)

Greetz
=k3Rn=
mortello
Jul 26 2004, 07:51 PM
Its already done....you already posted in 3 other threads about it....just wait for someone to compile it, or compile it yourself using the tips from other users (check the scriptgod thread).
=k3Rn=
Jul 27 2004, 01:23 AM
ok, i'll try to compile it and then i'll have a look at it ...

do you have any experiance with it? does it work?
mortello
Jul 27 2004, 03:02 AM
Scriptgod coded one, ask him, I'm not interested into trying that...I patched my computer....but I know people made it work, so I guess its functionnal.....also there is a compiled exploit on illwill's site if you want it...
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.