ggomezVERANCE.COM

• Next message: Christopher Shorter: "Re: Forensic References needed Urgently"
• Previous message: Dante Mercurio: "Re: "Port mapper" for NT/2000."
• In reply to: Mads Krog-Jensen: "NT Admin Logon"
• Next in thread: John Taylor: "Re: NT Admin Logon"
• Reply: Gene Gomez: "Re: NT Admin Logon"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Actually, this type of security flaw was used prior to SP3. Normally,
however, it wasn't cmd.exe that was used to exploit it. Most of the
documentation I've seen uses usrmgr.exe.
It doesn't work anymore, so don't bother unless your Admin is kind of slow
to implement security fixes. :)

-Gene

-----Original Message-----
From: Focus on Microsoft Mailing List
[mailto:FOCUS-MSSECURITYFOCUS.COM]On Behalf Of Mads Krog-Jensen
Sent: Tuesday, June 06, 2000 12:14 AM
To: FOCUS-MSSECURITYFOCUS.COM
Subject: NT Admin Logon

I found a website describing how to recover your admin NT Administrator
Password.

According the website this is not a bug, but could someone tell me if this
is true.

The vulnerabiliti comes if you have a normal user login for NT. Then make
the screensaver in NT be cmd.exe by renaming it to logon.src (The default
screensaver in NT)

logoff

When you do this you will be able to use your NT Resource Kit to add a new
user with Admin rights when the screensaver activates..

Anyone with experience with this thing?

Best

Mads Krog-Jensen
-- - - - - - - - - - - - -- --- -
www.multica.dk

• Next message: Christopher Shorter: "Re: Forensic References needed Urgently"
• Previous message: Dante Mercurio: "Re: "Port mapper" for NT/2000."
• In reply to: Mads Krog-Jensen: "NT Admin Logon"
• Next in thread: John Taylor: "Re: NT Admin Logon"
• Reply: Gene Gomez: "Re: NT Admin Logon"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]