ms04-031 pre-auth ??
http://www.microsoft.com/technet/security/bulletin/ms04-031.mspx We have located the vulnerable function and just recently wrote the CANVAS module for it but all our tests showed that the NetDDE vulnerability can not be exploited with a NULL session a.k.a with "Anonymous Logon" credentials. Here...