Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: [Full-disclosure] Microsoft Windows keybd_event validation vulnerability
From: cy.wang (wangchunyingsnda.com)
Date: Tue Sep 06 2005 - 20:21:56 CDT
what's the effect of this 'vulnerability' ?
it seems that messages can't be carried from a USER desktop to a prerogative desktop .
security analysis engineer
Shanda Interactive Entertainment Co. Ltd, Shanghai, China.
----- Original Message -----
From: "Jerome Athias" <jerome.athiasfree.fr>
To: "Frederic Charpentier" <fcharpenxmcopartners.com>
Cc: <bugtraqsecurityfocus.com>; <full-disclosurelists.grok.org.uk>
Sent: Tuesday, September 06, 2005 7:20 PM
Subject: Re: [Full-disclosure] Microsoft Windows keybd_event validation vulnerability
> It was posted by Andres Tarasco to full-disclosure allready
> 1) french version of the advisory:
> 2) I use to use this trick to obtain SYSTEM privileges with just ADMIN
> AT 20:00 /INTERACTIVE cmd.exe
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/