|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: AUTORUN.INF Vulnerability
From: Valentin Pletzer (vpletzer
GMX.NET)Date: Sun Feb 20 2000 - 10:27:57 CST
- Next message: Chuck Phillips: "Re: rp_filter? (was Re: DDOS Attack Mitigation)"
- Previous message: Ussr Labs: "Local / Remote Exploiteable Buffer Overflow Vulnerability in InterAccess TelnetD Server 4.0 for Windows NT"
- In reply to: Eric Stevens: "AUTORUN.INF Vulnerability"
- Next in thread: Philip Hannay: "Re: AUTORUN.INF Vulnerability"
- Reply: Valentin Pletzer: "Re: AUTORUN.INF Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi maybe some addition to that:
At 00:07 18.02.00 -0500, you wrote:
>administrative privileges, then it invokes Explorer on that directory to
>open the directory like normal.
This is not true if the directory is opened with the Workplace and not the
Explorer
>very real exploit; no directory guessing, i.e. did they name the WIN
>directory Windows or Winnt?
how about %windir% ???
quoted as short as possible ??? ;-)
- Next message: Chuck Phillips: "Re: rp_filter? (was Re: DDOS Attack Mitigation)"
- Previous message: Ussr Labs: "Local / Remote Exploiteable Buffer Overflow Vulnerability in InterAccess TelnetD Server 4.0 for Windows NT"
- In reply to: Eric Stevens: "AUTORUN.INF Vulnerability"
- Next in thread: Philip Hannay: "Re: AUTORUN.INF Vulnerability"
- Reply: Valentin Pletzer: "Re: AUTORUN.INF Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]