lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu Aug 25 05:38:22 2005 From: ngiles at hushmail.com (mike king) Subject: Re: Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I didn’t see anyone post a way to delete the registry key added so here is the tool I found that can accomplish this. "Regalyzer" from http://www.safer- networking.org/en/download/index.html query the key added to the registry. E:\>reg query HKEY_LOCAL_MACHINE\SOFTWARE\empty ! REG.EXE VERSION 3.0 HKEY_LOCAL_MACHINE\SOFTWARE\empty helloworldhelloworldhelloworldhelloworldhelloworldhelloworldhellowor ldhelloworldhelloworldhelloworldhelloworldhellow orldhelloworldhelloworldhelloworldhelloworldhelloworldhelloworldhell oworldhelloworldhelloworldhelloworldhelloworldhellow orldhelloworldhelloworl REG_SZ E:\ > After removing the key from the registry with Reglyzer E:\ reg query HKEY_LOCAL_MACHINE\SOFTWARE\empty ! REG.EXE VERSION 3.0 HKEY_LOCAL_MACHINE\SOFTWARE\empty E:\ > Best of luck mike king time® is a trademark of Universe© Public use permited by fair use agreement ( copyright [NULL] ) -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.4 wkYEARECAAYFAkMNSykACgkQUjm7xSZSd8FxBgCgkxvav4tmXZY5te5K2hCNPmHekV4A nRGuGi5KnT0tNLvLSIP7HSCFaQyi =uvzy -----END PGP SIGNATURE-----