Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: AUTORUN.INF Vulnerability
From: vpletzer () GMX NET (Valentin Pletzer)
Date: Sun, 20 Feb 2000 17:27:57 +0100


Hi maybe some addition to that:
At 00:07 18.02.00 -0500, you wrote:

administrative privileges, then it invokes Explorer on that directory to
open the directory like normal.

This is not true if the directory is opened with the Workplace and not the
Explorer

very real exploit; no directory guessing, i.e. did they name the WIN
directory Windows or Winnt?
how about %windir% ???

quoted as short as possible ??? ;-)


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]