Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Reminder about MS06-025 - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Reminder about MS06-025

The original patch from Microsoft caused issues with dialup.  A new patch was released June 21 (or thereabouts) that addressed this issue.  Exploit code is available that leverages this issue.  This allows an authenticated attacker to execute arbitrary code on Windows 2000 and XP SP2 systems.  Previous versions allow unauthenticated attackers to execute arbitrary code, this you garden-variety "bad-thing(tm)."

Kevin Liston

292 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!