Msie "msdds.dll"(0day)

Articles Metasploit Framework Windows Tutorial Remote Desktop Connection Windows Processes That May Be Dangerous How-To use NetCat a Tutorial Common Linux Commands Common Ports Netcat Commands HTTP Response Codes War-Google Hack Terms Wardriving Avoiding Social Engineering and Phishing Attacks Intrusion Detection on Linux Linux Intrusion Detection Penetration Testing Guide Penetration Testing Tools Social Engineering Fundamentals, Part I: Hacker Tactics Social engineering (computer security) The Psychology of Social Engineering The Archives General GSO GovernmentSecurity.org News & Suggestions In The News Open Topic General Security Information Trash Can Exploit & Vulnerability Mailing List Archives Trial Member Forum Product and Program Reviews GSO Tutorials System Security Windows Systems Beginners Section Linux & Unix Systems File Downloads Exploit Research & Discussion Trojan & Virus Errata Networking Security / Firewall / IDS / VPN / Routers System Hardening E-Mail Security Wifi Security Trial Member Uploads Upload discovered Trojans & Mal ware GSO Programming Section C , C++ , VC++ Visual Basic .NET Perl /CGI Java/Javascript PHP/XML/ASP/HTML Assembly + Other The Cork Board Network Security Consultant Directory Network Security Jobs The Archives Encryption Information General Network Security Internet Anonymity HTTP Protocol Security Linux Security MS IIS Information Exploit Articles Programming / Tool Design GSO Software Projects Public Downloads Microsoft Security Questions and Papers		Help - Search - Member List - Calendar Full Version: Msie "msdds.dll"(0day) GovernmentSecurity.org > System Security > Exploit Research & Discussion straylight Aug 17 2005, 09:15 PM [sorry about that, please delete the previous] According to FrSirt: http://www.frsirt.com/exploits/20050817.IE-Msddsdll-0day.php I have tested and in its current form it doesnt work for me....need to poke around a bit. -straylight soundsearch Aug 17 2005, 10:37 PM WOOOHOOOOO doesnt work for me either JaG Aug 17 2005, 11:28 PM It doesnt work, also its detected my f-Secure. I tested it with my av on, no luck and tried with it turned off same problem. Skunky88 Aug 17 2005, 11:51 PM kaspersky detects it too! doenst work here anymore! used winxpsp2 ger ie 6sp2 no shell! straylight Aug 18 2005, 03:02 AM after researching this for about 20 minutes i decided to do the obvious, search my system for the file...guess what it doesnt exist. So after a quick google on msdds.dll i found that it is related VS .NET And then i saw the post over at isc.sans.org relaying the same info. It looks like this is pretty much useless. -straylight Gurou Aug 18 2005, 03:38 AM worked for me, and I don't have Visual Studio Yorn Aug 18 2005, 01:14 PM QUOTE kaspersky detects it too! Kaspersky has guys that comb websites (this one included) so it wouldn't surprise me that they'd have it detected already. I know F-secure has a team that does the same thing, so I wouldn't be surprised if they catch it soon as well. I personally couldn't get this to work last night, but that's when I realized I didn't meet the requirements. The exploit requires Office 2003 or VS .NET. Don't you guys get the Secunia exploit mailings? I'd suggest signing up if you don't and filter them to their own mailbox. http://secunia.com/secunia_security_advisories/ Gurou Aug 18 2005, 04:58 PM ICS's today diary is focusing on this : http://isc.sans.org/diary.php?date=2005-08-18 Yorn Aug 18 2005, 06:51 PM And on their site, a temporary fix using the registry killbit: http://isc.sans.org/msddskillbit.php This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here. Invision Power Board © 2001-2005 Invision Power Services, Inc.