The exploit’s explained in a bit more detail at the tool writer’s homepage. He captured a network attack and replayed it across the network using the Activesync exploit. So this specific exploit works because he captured a DCOM attack to replay. But really, any network attack that you could capture to replay against the target should potentially work.
At least, that’s the way it looked to me.

This is Windoze, what do you expect. The most hacker-friendly OS in the history of computing.
If security is a big issue for a customer I would suggest looking into a Unix/Linux OS. There is a reason why Microsoft has re-written their TCP/IP stack at least 5 TIMES from the ground up and they still haven’t got it right. LOL

So, basically, same status as always… if you’re not installing Windows Updates on a monthly basis, you’re probably an idiot?

I followed the link and towards the bottom it says:
The specific ActiveSink exploit apparently requires copies of Windows XP that have not been patched to eliminate the DCOM vulnerability in order to operate. For more information on the operating system patch, which was first released in July 2003, see Microsoft’s website, see here.

Wow! not patched since July 2003 is this really an exploit or just publicity stunt?