Bugtraq mailing list archives

Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition

From: appro () FY CHALMERS SE (Andy Polyakov)
Date: Mon, 24 Jan 2000 16:26:46 +0100

There exist a vulnerability in rdisk which causes the contents of the
registry hives to be exposed to Everyone during updating of the repair info.

Which can be trivially fixed by revoking Everyone's ACE from
%SystemRoot%\repair. What's the fuzz? There're more serious holes in
default ACLs... Andy.

Current thread:

Quick remedy for stream.c Brett Glass (Jan 20)
- Re: Quick remedy for stream.c Frasnelli, Dan (Jan 21)
- Re: Quick remedy for stream.c bella (Jan 21)
- RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Arne Vidstrom (Jan 21)
  - Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Andy Polyakov (Jan 24)