[16617] in bugtraq
Re: Microsoft NT "un-removable user" Vulnerability.
daemon@ATHENA.MIT.EDU (Steve)
Wed Sep 6 19:55:30 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <NDBBKBPDOHLBFCALJJOOEECHCNAA.steve@securesolutions.org>
Date: Wed, 6 Sep 2000 09:25:26 -0600
Reply-To: Steve <steve@SECURESOLUTIONS.ORG>
From: Steve <steve@SECURESOLUTIONS.ORG>
X-To: johnl@clearoption.com
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <NEBBJGMGPMHBNOKCDLALIEFOCAAA.lists@darkcore.net>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> After your email, I retested this in NT4 SP6a and it is still true.
>
>
What build? Any hotfixes? I have re-tested this on three different
NT 4.0 SP6a+all hotfixes and cannot replicate the issue. I will ask
again, what custom user manager are you using?
> If I'm using the command incorrectly, please let me know. I'm not
> sure how to escape characters in NT (I also tried "net user
> testuser\; /delete" and various other forms but none worked.
Try a "NET USER /?" to get the proper syntax. I use "NET USER
testuser; /DELETE and it works fine on my test boxes. I am going to
toss my SP4 image on to a box later today and see if there is a
difference.
Regards;
Steve Manzuik
Moderator - Win2K Security Advice
www.ntsecurity.net
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBObZh0zV9eGvIXwM6EQLKygCgnXBvgJSTtM9DO7VqUPAfNXWNuZ4An1sR
nbY2Cjd2WxTsu4UzZNMeWX5j
=Mowj
-----END PGP SIGNATURE-----
