mailing list archives
Re: MS Windows Screensaver Privilege Escalation
From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Thu, 25 Nov 2004 13:19:08 +0300
Dear Stuart Fox (DSL AK),
--Thursday, November 25, 2004, 7:13:28 AM, you wrote to mattofak () gmail com:
SFDA> Interesting when read in the context of this:
It was different problem and it was really security bug. Usually user's
screensaver is executed with user's privileges. Under Windows NT if DOS
program (for example command.com) was specified as screensaver it was
executed with SYSTEM privileges. It was bug and it was patched.
Logon screensaver is screensaver configured for .DEFAULT user. Only
Administrators can change screensaver options for this users. Yes, it's
executed by system with SYSTEM privileges. By design, Power Users can
change any system file - it makes it possible for Power User to change
file for any system service, logon screensaver, etc. It's not security
bug, it's expected behaviour for Power User's group.
Есть там версии Отелло, где Дездемона душит Мавра. (Лем)
Full-Disclosure - We believe in it.
Re: MS Windows Screensaver Privilege Escalation Pavel Kankovsky (Nov 28)
RE: MS Windows Screensaver Privilege Escalation Stuart Fox \(DSL AK\) (Nov 25)
- Re: MS Windows Screensaver Privilege Escalation 3APA3A (Nov 25)