[9675] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: L0pht Security Advisory: Windows NT

daemon@ATHENA.MIT.EDU (Paul Ashton)
Fri Feb 19 19:12:10 1999

Date: 	Fri, 19 Feb 1999 11:23:44 +0000
Reply-To: Paul Ashton <paul@ARGO.DEMON.CO.UK>
From: Paul Ashton <paul@ARGO.DEMON.CO.UK>
To: BUGTRAQ@NETSPACE.ORG

Dildog <dildog@L0PHT.COM> writes:
>                           L0pht Security Advisory

> ---
> Workarounds/Fixes:
> ---
>
>       I developed a patch for this security problem in the form of a
> Win32 Service program that can be installed by the Administrator of the
> system. It sets itself to run every time the system is started, and before
> the user has the opportunity to start a program, it adjusts the
> permissions of the DLL cache to something much safer.

Alternatively, you can set
HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\ProtectionMode=1
and reboot.


Paul


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9675] in bugtraq

Re: L0pht Security Advisory: Windows NT

daemon@ATHENA.MIT.EDU (Paul Ashton)Fri Feb 19 19:12:10 1999

daemon@ATHENA.MIT.EDU (Paul Ashton)
Fri Feb 19 19:12:10 1999