LLSSRV Clarifications <Immunity>

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: LLSSRV Clarifications <Immunity>
From: Dave Aitel <dave@xxxxxxxxxxxxxxx>
Date: Wed, 16 Mar 2005 17:08:57 -0500
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: Mozilla Thunderbird 0.9 (Windows/20041103)

Immunity is happy to announce the release from VSC of a new paper to ourpublic website regarding the technical details of the llssrvvulnerability Microsoft released on February 8th, 2005. Along with thispaper, we've released a reliable, language-independant exploit to theCANVAS distribution.

As stated in MS05-010, LLSSRV is not remotely exploitable on Windows2000 Server SP3 and 4 without authentication. However, it is remotelyexploitable in Windows 2000 Advanced Server SP 3 and 4 withoutauthentication. This information, missing from MS05-010, is a perfectexample as to why fully independant third party security information andexploit code provide a key link in an organization's ability tounderstand and evaluate the risk posted by vulnerabilities.

Further details, vulnerability release scheduling, and other informationare available here:

http://www.immunitysec.com/resources-advisories.shtml

Thanks,
Dave Aitel
Immunity, Inc.

Prev by Date: Re: Av issues
Next by Date: MDKSA-2005:059 - Updated evolution packages fix crasher
Previous by thread: Re: GoodTech Telnet Server Buffer Overflow Vulnerability [EXPLOIT]
Next by thread: MDKSA-2005:059 - Updated evolution packages fix crasher
Index(es):
- Date
- Thread