[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd)

To: full-disclosure@lists.netsys.com
Subject: RE: [Full-Disclosure] ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd)
From: Joey <joey2cool@yahoo.com>
Date: Wed, 13 Aug 2003 12:55:38 -0700 (PDT)

svchost.exe listens on several ports on windows xp.
If microsoft is saying that it should never be on the
internet, couldn't there be more b0f's discovered in
the future? One peculiar service "DNS Client",
although listening on a few random ports just about
1024, also runs off of svchost.exe.

--- Nick FitzGerald <nick@virus-l.demon.co.uk> wrote:
> They cannot do _any business whatsoever_ if they
> cannot expose a  pile 
> of crap like MS RPC to the Internet?  Code that MS
> now openly admits 
> should never be exposed to "hostile environments"? 
> Who was responsible 
> for such horrendous mis-design?

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] ISS Security Brief: 'MS Blast' MSRPC DCOM Worm Propagation (fwd)
  - From: "Daniele Muscetta" <daniele@muscetta.com>

References:
- RE: [Full-Disclosure] ISS Security Brief: "MS Blast" MSRPC DCOM WormPropagation (fwd)
  - From: Nick FitzGerald <nick@virus-l.demon.co.uk>

Prev by Date: [Full-Disclosure] OpenBSD protect windows update ?
Next by Date: [Full-Disclosure] Firewalls
Prev by thread: RE: [Full-Disclosure] ISS Security Brief: "MS Blast" MSRPC DCOM WormPropagation (fwd)
Next by thread: RE: [Full-Disclosure] ISS Security Brief: 'MS Blast' MSRPC DCOM Worm Propagation (fwd)
Index(es):
- Date
- Thread