Full Disclosure: Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability

From: Spiro Trikaliotis <trik-news () gmx de>
Date: Wed, 24 Aug 2005 20:17:07 +0200

Hello,

* On Wed, Aug 24, 2005 at 11:01:11AM +0400 Igor Franchuk wrote:

DESCRIPTION

Microsoft Registry Editor for 2K and XP (Regedt32.exe) has a nice design flow
that is naturally allows to hide registry information from viewing and
editing even from users with administrative access. (really handful, thanks guys)


this somehow reminds me of

  http://www.sysinternals.com/Information/TipsAndTrivia.html#HiddenKeys

Of course, I am well aware that these both are different.

Anyway, I'm not sure if the one or the other can be called a "security
bug".

Best regards,
   Spiro.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability Igor Franchuk (Aug 24)
- Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability Jérôme ATHIAS (Aug 24)
  - Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability Gilles DEMARTY (Aug 24)
    - Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability James Tucker (Aug 24)
- Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability Spiro Trikaliotis (Aug 24)