OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[Full-disclosure] Microsoft patches the WMI Object Broker bug

From: H D Moore (fdlistdigitaloffense.net)
Date: Wed Nov 01 2006 - 13:21:00 CST


http://www.microsoft.com/technet/security/advisory/927709.mspx

The Metasploit 2 module (ie_createobject)[1] has been exploiting this bug
since it was released in August. Glad to see they finally noticed.

Thanks to Aviv for noticing / sending me the link.

-HD

1. http://metasploit.com/projects/Framework/exploits.html#ie_createobject

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/