Re: AUTORUN.INF Vulnerability

From: Valentin Pletzer (vpletzerat_private)
Date: Sun Feb 20 2000 - 08:27:57 PST

Next message: Ussr Labs: "Local / Remote Exploiteable Buffer Overflow Vulnerability in"

Previous message: Cave, Glynis: "MMDF"
Maybe in reply to: Eric Stevens: "AUTORUN.INF Vulnerability"
Next in thread: Philip Hannay: "Re: AUTORUN.INF Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi maybe some addition to that:
At 00:07 18.02.00 -0500, you wrote:

>administrative privileges, then it invokes Explorer on that directory to
>open the directory like normal.

This is not true if the directory is opened with the Workplace and not the
Explorer

>very real exploit; no directory guessing, i.e. did they name the WIN
>directory Windows or Winnt?
how about %windir% ???

quoted as short as possible ??? ;-)

Next message: Ussr Labs: "Local / Remote Exploiteable Buffer Overflow Vulnerability in"
Previous message: Cave, Glynis: "MMDF"
Maybe in reply to: Eric Stevens: "AUTORUN.INF Vulnerability"
Next in thread: Philip Hannay: "Re: AUTORUN.INF Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:36:24 PDT