Overclock.net - Overclocking.net
     
 
Home Gallery Reviews Blogs Register Today's Posts Mark Forums Read Members List


Go Back   Overclock.net - Overclocking.net > Software, Programming and Coding > Networking & Security
Reload this Page Whats DCOM Exploit?

Reply
 
LinkBack Thread Tools
Old 07-30-07   #1 (permalink)
AMD Overclocker
 
BigpoppaFrary's Avatar
 
amd ati

Join Date: Jul 2006
Location: Mio Michigan
Posts: 3,305

Rep: 138 BigpoppaFrary is acknowledged by manyBigpoppaFrary is acknowledged by many
Unique Rep: 117
Folding Team Rank: 972
Trader Rating: 1
Default Whats DCOM Exploit?
My avast two times so far has pooped up saying Blocked DCOM Exploit and shows an ip, whats a dcom exploit ?
__________________
MICHIGAN OVERCLOCKERS

System: Woo! Phenom
CPU
Phenom II 720BE		 Motherboard
Gigabyte US2H		 Memory
GSkill 1066 2GB 		Graphics Card
ATi 4200
Hard Drive
160 GB Cav		 Sound Card
Onboard		 Power Supply
400W Corsair		 Case
NZXT BETA Evo
OS
Windows Vista 32bit SP2		 Monitor
19' Sony Trinitron 85Hrz RR
BigpoppaFrary is offline I fold for Overclock.net   Reply With Quote
Old 07-30-07   #2 (permalink)
*cough* Stock *cough*
 
jaslew's Avatar
 
amd ati

Join Date: Sep 2006
Location: Liverpool
Posts: 437

Rep: 50 jaslew is acknowledged by some
Unique Rep: 45
Trader Rating: 0
Default
i had a look for anything about this because i've been seeing it on a couple of computers at work.

Anyway, couldn't really find any info on it, but came across This which seems to say it is a security exploit, but its not a stealthy exploit and when used, it's quite visible

Quote:
*Very* accurate. If the machine is vulnerable, the
exploit will almost always succeed on the first
attempt.

I've successfully tested it on about 16 boxes and each
one was rooted on the first try. Among these were
Win2k with SP0, SP1, SP3 while two were WinXP(SP level
not known). Before running the exploit, the machines
were confirmed as vulnerable with the Eeye tool(on a
side note, while the Eeye tool did recognise many
vulnerable boxes, it failed to recognise some of them,
though, they were vulnerable).

One glitch is that the exploitation is not very
stealth. All RPC/COM based functions stop working
completely after exploitation and fail to heal until
the machine is restarted. Many of these functions are
quite visible and easily noticeable(drag&drop,
clipboard, property sheets, etc., for example). This
happens without exception.

The exploit mostly times out when run against remote
hosts.
__________________
System: My System
CPU
Amd Athlon64 X2 3800+ @2.2Gig		 Motherboard
Gigabyte GA M55S-S3		 Memory
Crucial DDR2 2x1024mb 		Graphics Card
Asus EAH4850
Hard Drive
Maxtor Sata 300Gb		 Sound Card
Soundblaster Audigy SE 7.1		 Power Supply
XPro 500W		 Case
Viper?
CPU cooling
Arctic Freezer 64 Pro		 GPU cooling
Stock		 OS
Windows Vista Home Basic 32Bit
jaslew is offline   Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools



All times are GMT -5. The time now is 09:29 PM.

Contact Us - Overclock.net - Archive - Top

Overclock.net is a Carbon Neutral Site Creative Commons License

Terms of Service / Forum Rules | Privacy Policy | DMCA Info | Advertising | Become an Official Vendor
Copyright © 2010 Shogun Interactive Development. Most rights reserved.
Page generated in 0.10022 seconds with 8 queries