bgreenbaumSECURITYFOCUS.COM

• Next message: Ofir Arkin: "TOSing OSs out of the window / Fingerprinting Windows 2000 with ICMP (a bit long)"
• Previous message: Iván Arce: "BEA Weblogic server proxy library vulnerabilities"
• Maybe in reply to: Georgi Guninski: "IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed thru Microsoft Networking. Also local Administrator compromise at least on default Windows 2000."
• Maybe reply: Ben Greenbaum: "Re: IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed thru Microsoft Networking. Also local Administrator compromise at least on default Windows 2000."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Georgi Guninski security advisory #18, 2000
>
> IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed
> thru Microsoft Networking. Also local Administrator compromise at least
> on default Windows 2000.
>
> Systems affected:
> For remote file execution: IE 5.5,5.x/Windows 98, the files must be
> accessible thru Microsoft Networking.
> For local Administrator compromise on Windows 2000: default Windows 2000
> installation, I have not tested with IE 5.5 installed, but believe to
> work

Replicated on Windows 2000 with IE 5.5

Ben Greenbaum
Director of Site Content
SecurityFocus
http://www.securityfocus.com

• Next message: Ofir Arkin: "TOSing OSs out of the window / Fingerprinting Windows 2000 with ICMP (a bit long)"
• Previous message: Iván Arce: "BEA Weblogic server proxy library vulnerabilities"
• Maybe in reply to: Georgi Guninski: "IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed thru Microsoft Networking. Also local Administrator compromise at least on default Windows 2000."
• Maybe reply: Ben Greenbaum: "Re: IE 5.5/5.x for Win98 may execute arbitrary files that can be accessed thru Microsoft Networking. Also local Administrator compromise at least on default Windows 2000."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]