Bugtraq: Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition

From: appro () FY CHALMERS SE (Andy Polyakov)
Date: Mon, 24 Jan 2000 16:26:46 +0100

There exist a vulnerability in rdisk which causes the contents of the
registry hives to be exposed to Everyone during updating of the repair info.

Which can be trivially fixed by revoking Everyone's ACE from
%SystemRoot%\repair. What's the fuzz? There're more serious holes in
default ACLs... Andy.

By Date By Thread

Current thread:

Quick remedy for stream.c Brett Glass (Jan 20)
- Re: Quick remedy for stream.c Frasnelli, Dan (Jan 21)
- Re: Quick remedy for stream.c bella (Jan 21)
- RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Arne Vidstrom (Jan 21)
  - Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Andy Polyakov (Jan 24)