[9917] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

New Security Vulnerability in WinNT

daemon@ATHENA.MIT.EDU (Alexandre Stervinou)
Fri Mar 12 22:42:38 1999

Date: 	Sat, 13 Mar 1999 00:32:19 +0100
Reply-To: stervino@INFO.ENSERB.U-BORDEAUX.FR
From: Alexandre Stervinou <stervino@INFO.ENSERB.U-BORDEAUX.FR>
To: BUGTRAQ@NETSPACE.ORG

A new security vulnerability in Windows NT4 has been released, I was
just surfin' on http://www.cybermedia.co.in/, when I saw this:

<quote>

 CSPL has uncovered most serious Case Sensitivity vulnerability in
Microsoft's Windows NT operating  system. This security hole allows you
to get "Administrator" access on a machine while logged in as "guest" or
any ordinary user

[...]

Description:
 Using the permissions on the "\??" object directory and by exploiting
the case sensitivity of object manager it is possible to trojan any
system executables.

</quote>

--
                 Alexandre Stervinou
       mailto:stervino@info.enserb.u-bordeaux.fr


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9917] in bugtraq

New Security Vulnerability in WinNT

daemon@ATHENA.MIT.EDU (Alexandre Stervinou)Fri Mar 12 22:42:38 1999

daemon@ATHENA.MIT.EDU (Alexandre Stervinou)
Fri Mar 12 22:42:38 1999