[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] LSASS exploit win32 binary

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: RE: [Full-Disclosure] LSASS exploit win32 binary
From: bosborne@xxxxxxxxxxxxx
Date: Wed, 28 Apr 2004 13:36:06 +1000

for those who are testing... a "shutdown -a" will stop it shutting down
although a manual shutdown after that displays a "You do not have
permission to shut down this computer."

tested it on 3 xp boxes without appropriate patch, all crashed.



|---------+-------------------------------------->
|         |           "Chris Scott"              |
|         |           <cscott@xxxxxxxxxxxxxx>    |
|         |           Sent by:                   |
|         |           full-disclosure-admin@lists|
|         |           .netsys.com                |
|         |                                      |
|         |                                      |
|         |           28/04/2004 01:00 PM        |
|         |                                      |
|---------+-------------------------------------->
  
>--------------------------------------------------------------------------------------------------------------|
  |                                                                             
                                 |
  |        To:      <Q.Long@xxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>     
                                 |
  |        cc:                                                                  
                                 |
  |        Subject: RE: [Full-Disclosure] LSASS exploit win32 binary            
                                 |
  
>--------------------------------------------------------------------------------------------------------------|





Tested against Windows XP Pro without the appropriate patch, it crashes the
service and initiates a shutdown timer.

-----Original Message-----
From: full-disclosure-admin@xxxxxxxxxxxxxxxx
[mailto:full-disclosure-admin@xxxxxxxxxxxxxxxx] On Behalf Of
Q.Long@xxxxxxxxxx
Sent: Tuesday, April 27, 2004 6:24 PM
Subject: [Full-Disclosure] LSASS exploit win32 binary

hi kids.
here's the compiled version of LSASS exploit from k-otik ...
http://users.volja.net/exceed/RLsasrv.zip

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html





_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] LSASS exploit win32 binary
  - From: Chris Scott

Prev by Date: Re: [Full-Disclosure] no more public exploits: just a n00bie view
Next by Date: Re: [Full-Disclosure] Firewall solution for Windows 2003 Server
Previous by thread: RE: [Full-Disclosure] LSASS exploit win32 binary
Next by thread: RE: [Full-Disclosure] LSASS exploit win32 binary
Index(es):
- Date
- Thread