Re: ISS Security Rip: Microsoft ASN.1 (Half a sploit)

To: kradhatman@xxxxxxxxxxxx
Subject: Re: ISS Security Rip: Microsoft ASN.1 (Half a sploit)
From: Valdis.Kletnieks@xxxxxx
Date: Sun, 15 Feb 2004 18:01:50 -0500
Cc: bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: Your message of "Fri, 13 Feb 2004 15:15:34 PST." <200402132315.i1DNFYAa067379@xxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <200402132315.i1DNFYAa067379@xxxxxxxxxxxxxxxxxxxxxxxx>

On Fri, 13 Feb 2004 15:15:34 PST, kradhatman@xxxxxxxxxxxx  said:
> "Due to the nature of this vulnerability, reliable and successful remote
> exploitation is considered difficult."
> 
> funny little men. there already a half working exploit for ASN. 

OK.. So it's a bit tougher to exploit than 'rlogin -froot'. ;)

Though I remember encountering a few who had problems with THAT one. ;)

Attachment: pgp9wwFzzSVeC.pgp
Description: PGP signature

References:
- RE: ISS Security Rip: Microsoft ASN.1 (Half a sploit)
  - From: kradhatman

Prev by Date: Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP
Next by Date: Re: [Full-Disclosure] Misinformation in Security Advisories (ASN.1)
Previous by thread: RE: ISS Security Rip: Microsoft ASN.1 (Half a sploit)
Next by thread: vBulletin PHP Forum Version
Index(es):
- Date
- Thread