[31175] in bugtraq
Re: Analysis/decompilation of main() of the msblast worm
daemon@ATHENA.MIT.EDU (Helmut Hauser)
Thu Aug 14 14:44:02 2003
Date: 14 Aug 2003 17:14:11 -0000
Message-ID: <20030814171411.10246.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Helmut Hauser <helmut.hauser@intraplan.de>
To: bugtraq@securityfocus.com
In-Reply-To: <001a01c362a4$d523d600$b100a8c0@penetrator>
Sorry Dennis but the regards must go to E-Eye Security:
http://www.eeye.com/html/Research/Advisories/Blaster_Analysis.txt
(Done on August 12, 2003) btw very nice Disasm :)
There is another RPC Leak which is not fixed by the Microsoft Patch.
Helmut Hauser
Sysytemadministrator
Intraplan Consult GmbH
