Bugtraq: Re: Fatal bug in NT 4.0 server

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Fatal bug in NT 4.0 server

From: Y.Adamopoulos () noc ntua gr (Yiorgos Adamopoulos)
Date: Mon, 7 Apr 1997 14:26:23 +0300

    It is known about big hole in NT 4.0 security system
    that allows for a user without any access permission to mount NT
    server root directory (disk C:) in r/w mode and to take a
    complete control over NT system ? I heard only some little


Under 4.0 (no service packs) it is possble to mount drive C: (and any other
drive) R/W if you have a user account.  Note that this is the default
installation and therefore it is not a bug but a missconfiguration:

smbclient '\\ntserver\c$' -U user

should give you the smb> prompt.

Installing SP2 removes these defaults.

-Yiorgos.

By Date By Thread

Current thread:

Fatal bug in NT 4.0 server Vytautas Vysniauskas (Apr 02)
- Re: Fatal bug in NT 4.0 server Yiorgos Adamopoulos (Apr 07)