Hi, I saw this discussion that's why i had doubts if i should publish this overflow. But, can you compare cipher to nslookup ? cipher.exe is part of the EFS. Because its such important file ive decided to write about it. who knows, maybe someone here will be able to exploit it and find something big. Regards, Moran. >From: "K. K. Mookhey" <ctoat_private> >Subject: Re: cipher.exe overflow >Date: Wed, 23 Apr 2003 11:05:39 +0530 > >Hi Moran, >Windows 2000 is full of local buffer overflows. We too reported a couple to >MS, and then stopped looking. There was a discussion some time back on >Nslookup having a local BO. I think the thread is here: >http://www.securityfocus.com/archive/82/315781 > >K. K. Mookhey >CTO, >Network Intelligence India Pvt. Ltd. >Web: www.nii.co.in >================================= >Security Auditing Software - AuditPro >http://www.nii.co.in/products.html >================================= _________________________________________________________________ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail
This archive was generated by hypermail 2b30 : Thu Apr 24 2003 - 12:58:18 PDT