Re: MS05-039 Scanner

From: Jeff Bryner (jbryner1@yahoo.com)
Date: Tue Aug 16 2005 - 12:28:58 EDT


> Does anyone know of any available scanners for this vulnerability? I
> know Tenable has a plugin for Nessus and eEye has a free one for up

I dunno if you've solved this or not, but the tenable ones are usually
just templates that look for different hotfixes.

The source for this particular one is on their website at:

http://www.nessus.org/plugins/index.php?view=viewsrc&id=19402

and you can see what it looks for.

Assuming you have admin access to this class B network you could use
the nessus plugin, or script something to mount the admin share and
look for the hotfix.

Alternatively http://hfnetchk.shavlik.com/ can also check for hotfixes
remotely again assuming you have admin access.

Jeff.

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:45 EDT