OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Incorrect Permissions for CD-Rom Administrative Shares
From: Shelton Kwan (sheltonREPLICON.COM)
Date: Thu May 25 2000 - 00:21:25 CDT

Hi All.

While accessing a few administrative shares remotely on my all Windows 2000
network (c$, d$, etc), I noticed that the administrative shares for the
CD-Rom drives are available to "Everyone" instead of Administrators and
Backup Operators. Is this normal? Since you can only delete admin shares
until you reboot, this is a dangerous security problem.

For example, on a Win2k server sitting on the internet with guest enabled
and a CD-Rom drive of E:\, anyone can access it by \\xx.xx.xx.xx\e$.
Obviously if there's no CD-Rom in the drive, this would not work.

I've already upgraded all my servers to Windows 2000 (bad move? =P) so I
can't confirm this on WinNT 4.0. I also haven't confirmed this yet with
Win2k Pro, so any feedback would be appreciated. My configuration is Windows
2000 Server (tested on 2 machines, one with SP1 beta and the other without).

Am I missing something here or is this a valid problem?

Shelton Kwan
-----------------------
Replicon Inc.
Suite 830 910 - 7th Ave. S.W.
Calgary, AB. T2P-3N8
Phone: (403)-262-6519 ext. 168
Fax: (403)-233-8046
http://www.replicon.com
Email: sheltonreplicon.com
-----------------------