[15495] in bugtraq
Re: Force Feeding
daemon@ATHENA.MIT.EDU (Phonix)
Tue Jun 27 16:38:13 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.20.0006270905100.12282-100000@sebulba.moocow.org>
Date: Tue, 27 Jun 2000 09:06:47 -0400
Reply-To: Phonix <phonix@MOOCOW.ORG>
From: Phonix <phonix@MOOCOW.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.BSO.4.21.0006251153380.16770-100000@0nus.l0pht.com>
On Sun, 25 Jun 2000, Weld Pond wrote:
> The demo exploit won't work in W2K because the temp directory where the
> .exe is downloaded to is "c:\documents and settings\'username'\local
> settings\temp".
That's only true if W2K is a clean install; upgrading from NT4 leaves the
original directory structures and doesn't create the "documents and
settings" directory tree.
.phonix.
