[Dshield] Trojan that exploits MS05-0??
ltr at isc.upenn.edu
Tue Oct 18 00:12:08 GMT 2005
I may be wrong but I am thinking Trendmicro bundled the MSDTC in the text of
the advisory because that is how it was bundled by Microsoft (Thanks
Microsoft!). They refer to MSDTC/COM. I'm going to 'guess' this uses the
COM vulnerability. Probably a local privilege escalation.
David Taylor //Sr. Information Security Specialist
University of Pennsylvania Information Security
Philadelphia PA USA
SANS - The Twenty Most Critical Internet Security Vulnerabilities
SANS - Internet Storm Center
From: list-bounces at lists.dshield.org [mailto:list-bounces at lists.dshield.org]
On Behalf Of Martin Forest
Sent: Monday, October 17, 2005 7:49 PM
To: General DShield Discussion List
Subject: Re: [Dshield] Trojan that exploits MS05-0??
Are you talking about MS05-031 or MS05-051?
On Tue, 18 Oct 2005 10:50:56 +1300, Roger Roberts
<roger.roberts at gmail.com> wrote:
> Let the MS05-031 Games possibly begin. Trend link, doesnt appear to have
> taken off as of yet.
> Using .Net? Need to know more about .Net Security?
> send all posts to list at lists.dshield.org
> To change your subscription options (or unsubscribe), see:
Using Opera's revolutionary e-mail client: http://www.opera.com/mail/
Using .Net? Need to know more about .Net Security?
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
More information about the list