MS11-100 DoS PoC exploit published

Published: 2012-01-09. Last Updated: 2012-01-09 19:21:27 UTC
by Manuel Humberto Santander Pelaez (Version: 1)
4 comment(s)

If you have not patched yet for vulnerability MS11-100 you might want to do it ASAP, because the DoS PoC exploit for this vulnerability has been published two days ago.

More information about the vulnerability and patches at http://technet.microsoft.com/en-us/security/bulletin/ms11-100

Manuel Humberto Santander Peláez
SANS Internet Storm Center - Handler
Twitter: @manuelsantander
Web:http://manuel.santander.name
e-mail: msantand at isc dot sans dot org

 

 

Keywords:
4 comment(s)

Comments

Can you please provide some references for your statement? I have found *nothing* except for a lot of references to this post. My employer usually requires more than a blog post to change a decisions they've already made after a risk analysis.
Thanks!
-JP

JeffP

Jan 9th 2012
1 decade ago

https://github.com/HybrisDisaster/aspHashDoS

though I have not tried it.

n3z

Jan 9th 2012
1 decade ago

We have posted ModSecurity mitigation options - http://blog.spiderlabs.com/2012/01/modsecurity-mitigations-for-aspnet-hashtable-dos-vulnerability-cve-2011-3414.html

This is useful if you have front-ended your web app servers with a ModSecurity reverse proxy.

Ryan Barnett

Jan 9th 2012
1 decade ago

@Ryan: thanks for your work on the ModSecurity rules and these additions in particular!

Bitwiper

Jan 10th 2012
1 decade ago

Login here to join the discussion.


Top of page
Diary Archives