|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Pidgorny, Slav (pidgorns
anz.com)Date: Wed Jul 25 2001 - 01:52:17 CDT
Yes. But consider one real-world situation: my ASP files have no access
assigned for LocalSystem (and execute only for the IUSR). It will be a
tricky process to deface the site?
Kindest,
Svyatoslav Pidgorny
> -----Original Message-----
> From: Ryan Permeh [mailto:ryaneEye.com]
> Sent: 25 July 2001 04:06
> To: Pidgorny, Slav; 'H C'; lynch00msn.com; focus-mssecurityfocus.com
> Subject: Re: Hacked NT/2K box
>
>
> system level access is enough for everything. it is the
> highest usermode
> privledge level availible in nt/2k. you can load drivers
> (giving you ring0,
> even above system).
>
> SYSTEM > Administrators
...
> Ryan Permeh
> eEye Digital Security Team
> http://www.eEye.com/Retina -Network Security Scanner
> http://www.eEye.com/Iris -Network Traffic Analyzer
> ----- Original Message -----
> From: "Pidgorny, Slav" <pidgornsanz.com>
> > A good deal of additional effort is required to either
> escalate privileges
> > or disable system security checks if having only system
> level access.
...
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]