[12883] in bugtraq
Re: NT WinLogon VM contains plaintext password visible in admin
daemon@ATHENA.MIT.EDU (Chris Paget)
Wed Dec 8 13:17:33 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <38503840.81529172@mailer.net800.co.uk>
Date: Wed, 8 Dec 1999 11:01:38 GMT
Reply-To: Chris Paget <mad.nutter@MINDLESS.COM>
From: Chris Paget <mad.nutter@MINDLESS.COM>
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <A7CB8F787221D2119ABB0008C724549601777B6E@exchange2.greatplains.com>
Content-Transfer-Encoding: 8bit
>I contacted MS about this and they indicated it was fixed in
>NT 4.0 SP5 - I have not retested it on SP5 yet to be sure.
This has been fixed under NT4 SP6 - the first 10,000 bytes of the
winlogon process are not accessible, and the rest of the memory space
appears to have nothing interesting in it - all I managed to retrieve
were actual environment variables. Windows 2000 RC2 is the same - I
have not tested RC3, but I would assume it too is fixed.
Chris
--
Chris Paget
C++ Developer - NetInvest LTD.
chris.paget@netinvest.co.uk
