lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <005001c38e61$8910fe30$3200000a@pluto>
From: jkuperus at planet.nl (jelmer)
Subject: Internet Explorer (BAN IT !!!)

Like people have noted, this old news

But to comment on what you said, it protects you against the exploit not the vulnerability, you might just as well drop an exe in the users start folder, yes it wouldn't be instant but preciously few people would notice it

--jelmer
  ----- Original Message ----- 
  From: Peter King 
  To: full-disclosure@...sys.com 
  Sent: Thursday, October 09, 2003 12:31 PM
  Subject: Re: [Full-Disclosure] Internet Explorer (BAN IT !!!)


  i confirm that an unprivileged user is safe from this exploit. and i agree with you : too many people are running their Windows with Full Privileges :/

  Regards.
  Peter - System Administrator


  Irwan Hadi <irwanhadi@...by.com> wrote:
    On Thu, Oct 09, 2003 at 07:54:08AM +1000, gregh wrote:

    > 
    > ----- Original Message ----- 
    > From: "Stephen" 
    > To: 
    > Sent: Thursday, October 09, 2003 5:19 AM
    > Subject: [Full-Disclosure] Internet Explorer (BAN IT !!!)
    > 
    > 
    > >
    > > It becomes really dangerous to use IE ...
    > >
    > > http://www.k-otik.com/WMPLAYER-TEST/
    > >
    > > God bless Mozilla
    > >
    > > http://www.mozilla.org/
    > >
    > 
    > 
    > Your test didn't work on my IESP1 under XP with all patches excepting
    > 811394. Absolutely no effect on WMP. My original WMP remains and works.

    It depends whether you were logging as a privileged user or not.
    If not, then your browser can't delete the wmplayer.exe file, becausethe only user that can change/delete the wmplayer.exe file is privileged
    user.
    C:\PROGRA~1\Windows Media Player>cacls wmplayer.exe
    C:\PROGRA~1\Windows Media Player\wmplayer.exe BUILTIN\Users:R
    BUILTIN\Power Users:C
    BUILTIN\Administrators:F
    NT AUTHORITY\SYSTEM:F


    C:\PROGRA~1\Windows Media Player>

    The problem is just too many people are running their Windows with
    Full Privileges.




------------------------------------------------------------------------------
  Do you Yahoo!?
  The New Yahoo! Shopping - with improved product search
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20031009/e384c5ad/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ