Bugtraq mailing list archives
Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition
From: appro () FY CHALMERS SE (Andy Polyakov)
Date: Mon, 24 Jan 2000 16:26:46 +0100
There exist a vulnerability in rdisk which causes the contents of the registry hives to be exposed to Everyone during updating of the repair info.
Which can be trivially fixed by revoking Everyone's ACE from %SystemRoot%\repair. What's the fuzz? There're more serious holes in default ACLs... Andy.
Current thread:
- Quick remedy for stream.c Brett Glass (Jan 20)
- Re: Quick remedy for stream.c Frasnelli, Dan (Jan 21)
- Re: Quick remedy for stream.c bella (Jan 21)
- RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Arne Vidstrom (Jan 21)
- Re: RDISK registry enumeration file vulnerability in Windows NT 4.0 Terminal Server Edition Andy Polyakov (Jan 24)