Re: Smashing Windows

From: Tim Morgan (tmorgan-securityat_private)
Date: Thu Apr 11 2002 - 08:05:42 PDT

Next message: Burton M. Strauss III: "re: gobbles ntop alert"

Previous message: Maximiliano Caceres: "Re: Windows 2000 and NT4 IIS .ASP Remote Buffer Overflow"
In reply to: Nicholas R.: "Smashing Windows"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> is how exactly are local privelages gained? For example, under unix only 
> programs suid/sgid that are vulnerable can sometimes be exploited to gain root. 

Keep in mind, a program doesn't have to be suid/sgid to be run as root
or other priviledged users.  I don't know of any resources to answer
your main question, but I would focus my efforts on system services and
slimilar daemons.

tim

Next message: Burton M. Strauss III: "re: gobbles ntop alert"
Previous message: Maximiliano Caceres: "Re: Windows 2000 and NT4 IIS .ASP Remote Buffer Overflow"
In reply to: Nicholas R.: "Smashing Windows"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Apr 11 2002 - 15:15:26 PDT