| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: michealespinola at gmail.com (Micheal Espinola Jr) Subject: MORE CRITICAL FLAWS IN MS WINDOWS EXPLORER He's referring to Windows Explorer (the Windows GUI interface, C:\WINDOWS\explorer.exe). It is a joke. On Wed, 12 Jan 2005 01:48:29 -0500, Kevin Reiter <tux@...guinnetwerx.net> wrote: > <snip> > > : Windows Explorer is an advanced browsing tool made by Microsoft. It is used > : in daily tasks to open folders, copy files, delete files, rename files and > : view files on a system. It is the foundation of the World Wide Web and used > > OK, we need to figure out which "Explorer" this guy is talkin' about - Internet > Explorer or Windows Explorer. > > : Shogun Suzuki discovered that a remote user can connect to any machine via > : numerous exploits and use Windows Explorer to view files, rename files, > : delete files, change permissions on files stored on a remote machine that > : has been pwned. > > ..such as ...???? (HINT: What 'sploits?) > > : On a command prompt: del C:\WINDOWS\explorer.exe > > Erm...sure...OK. But what happens when the poor sucker reboots the box and > discovers the O/S is inop (provided the O/S even lets you delete the file in the > first place, since explorer.exe is the shell ...)? > > Sorry, but this was the very first post I saw after I joined this list a little > bit ago, and I couldn't resist a few comments. Is this guy for real, or is this a > joke? > > -K > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > -- ME2 rss: <http://www.santeriasys.net/rss.xml>
Powered by blists - more mailing lists