gameratheart
Jun 5 2006, 07:38 PM
A friend of mine was temporarily banned from the computers at my school a while ago after he accidentially found a way into Task Manager, which is disabled on our network. He has had his permissions restored now, but has no idea why he got banned in the first place. However, recently he explained what he did to me, and I tested it. I soon found out that, by accident, we had both discovered that there is a Security Exploit in networking Windows XP Professional. The exploit is to do with network permissions. Windows XP recieves the permission data from the network as soon as someone attempts to login to the network. However, providing the account was valid, it will not apply these permissions until the account is logged in entirely. Unfortunately, while XP is in the process of dealing with this, the user in question is able to press Control-Alt-Delete and access their account options. Seeing as how, by this point, the login will have not completed, the user would not have any permissions disabled. Therefore, he is still able to do things such as change his password (disabled on some networks), and, even more worryingly, access the task manager. This is a security exploit, as use of Task Manager on a network is known to be dangerous, due to the ability to stop processes critical to the network. It also allows the user to logout other people from the network. Permissions will still be loaded while Task Manager is open, however, so if the user quits Task Manager he will not be able to access it again without logging out and back in again to try and replicate the exploit. It is intresting to see, however, that while the networks, by default, block access to Task Manager unless you are an Admin, it does not block anyone from doing anything in it. So anyone who finds a way in, has a golden ticket to michief. What will Windows do now that such an exploit has been discovered? Only time will tell. (Bill Gates, if you are reading this, can you please be more careful with security from now on?) Thanks for reading this.
Reply
Paul
Jun 5 2006, 09:34 PM
Actually, you cannot do much to the network with access to Task Manager, due to other permissions in the Windows OS. Accessing the Task Manager is not a very seroius issue because if you end some processes you can only affect the PC that you are using and not other PC's on the network. This is not a serious issue that Microsoft should be worried about because access to the Task Manager poses minimal risk to a network, rather its the processes that you run that will affect a network. By default, the permissions of the PC before anyone logs in are set to minimum (In your case the level of a student). A person cannot have total rights over the network without logging in as an admin. QUOTE What will Windows do now that such an exploit has been discovered? Only time will tell. This could also serve as a debug tool for admins, tech-support staff if the particular system is having problems logging in to the network. QUOTE (Bill Gates, if you are reading this, can you please be more careful with security from now on?) I'm sure he's reading the! Trap17 forums 
Reply
Recent Queries:--
task manager permissions - 57.20 hr back. (1)
-
xp pro network login admin - 72.69 hr back. (1)
Similar Topics
Keywords : windows, xp, pro, exploit, permission, setup, access, task, manager, login, permissions, deny, abiltity
- Windows 7-windows Live Ties
Microsoft is at it again (0)
Windows Xp Restarts When Using The Internet
(0) Hi Guys, I've had a problem with my computer. I thought it restarted only when using the
internet but I was wrong. I found out that isn't the denominator. I tried disabling the internet
to run a virus scan and the scan can't complete as the computer restarts too often. I followed
the following instructions to read the dmp file the restart error generates. 1) Download and
install the http://www.microsoft.com/whdc/devtools/deb...installx86.mspx Debugging Tools from
Microsoft 2) Locate your latest memory.dmp file- C:\WINDOWS\ Minidump\Mini0....
Windows Vista Sp1 Blocks Antivirus Programs
(5) Well it seems this is the first major problem for Vista SP 1 in the sense for those who have the
following Secuirty Suites installed on your ocmputer that is running Vista. They block the
following programs; Zone Alarm Security Suite 7.1, Trend Micro Internet Security 2008, BitDefender
10, and the 2008 version of the Jiangmin antivirus. As for the reason why these programs don't
work, Microsoft says "they are incompatible and so they must be block". Well not exactly like that
but you get the point they also mention that other small programs might now work either b....
Is There An Exploit In Vista Home Premium To Make Firefox Permanant Default Browser?
(4) I just got a new laptop, and of course it's loaded with vista. Everything works awesomly!
(my last PC was from 2001, BIG DIFF.) But the damned thing compulsivly and automatically sets
Internet Explorer to my default browser and won't let me change certain things which browsers
will typically handle. 've manually changed it so Firefox handles all the stuff except HTTPS
and what not (CANNOT CHANGE W/O HACK!), but IE just bumps in every time I want to click a link
from a non-browser based file /sad.gif" style="vertical-align:middle" emoid=":(" border="....
Quicktime Zero Day Exploit News And Updates
(1) On monday it was reported that Quicktime 7.2 and 7.3 versions come with a new exploit in which
malware could on to a person's computer through streaming videos. They only mention that XP and
Vista are the only affect systems and no word came about on the Mac operating system. They mention
that a buffer overflow bug was made in which it "contains a stack buffer overflow vulnerability in
the way Quicktime handles the RTSP Content-Type header." For those who don't know what RTSP is,
RTSP is the Real-Time Streaming Protocol which apple uses for its QuickTime softw....
Major Flaw In .ani File Found In Windows 98 Through Vista Creates Major Security Risk
Vista Aint that Secure at all (9) I was able to browse around this and found it interesting since this vunerability is found in 4
Microsoft Operating Sytems, Windows 2000, Windows XP, Windows Vista, Windows 2003 Server. From the
article Microsoft stated that their is a hole in the .ani files, which happen to be related tothe
mouse cursor, when the mouse icon changes depending on what you do. They only mention that with
this flaw it always hackers to break into someone computer and do their thing. But in another
article relating to this attack it was mention that in order for this to happen a user has ....
Windows Vista Less Secure Than Older Versions?
(7) my brother has windows vista and told me that it is safer than other versions of windows but
according to other people they say that it has bugs and other stuff whick one of these are true?....
Some New Apple Ipods Contain A Virus From Windows!
(7) Here is the deal. I got this video ipod recently and it turns out that it had a worm on it. I was
only one fo the few but it did have one. The virus is called RavMonE Virus. Here is a link to find
out more about it. more info It doesn't affect macs only windows based computers. I plugged
it up to the computer and my antivirus detected a worm and I was very surprised. I did some
research and it turns out that some contracted company who builds the ipods for apple had computers
connected to the ipods and they had been infected. These computers were windows....
Windows Crashing. Can't Use Opera Or Firefox
deleted files in temp folder (3) Windows has been acting strangely by now, it freezes/clogs badly, I can't use Opera, MF or
continue my tutorials due to this problem. It gets on my nerves as I think it was MY problem because
I deleted MOST of the files in the Temp folder. CODE (Start>Run...>%Temp%)
That folder, most of the files were deleted by me. I consulted my friend by half-screwed MSN, he
said I "effed me up the arse" by doing that. He recommended me backing up and formatting. I never
did that before so I think it will be most-likely half-impossible for me. And as I d....
Zero-day Firefox Exploit
(5) Link to Article: http://news.com.com/Hackers+claim+zero-day..._3-6121608.html Thought this was
interesting. Really caught me offgaurd, didn't expect such a huge flaw on a GPL based program.
Whats even more scary is they said they have about 30 other flaws found.......
Cpanel Exploit
security hole in cPanel to hack the servers of a hosting company (8) A pair days ago I read this new on Slashdot: cPanel Exploit Used to Circulate IE Exploit
QUOTE "In a dangerous combination of unpatched exploits, hackers have used a previously
undiscovered security hole in cPanel to hack the servers of a hosting company and use hundreds of
hijacked sites to infect Internet Explorer users with malware using the unpatched VML exploit.
cPanel, whose hosting automation software is used by many large hosting companies, has issued a fix.
It's a local exploit, meaning the attacker must control a cPanel account on the target hosti....
A Very Simple Security Tip
for Windows 2000/XP (13) We all know the difference between a limited user and an administrator user under Win2k/XP - you
can't/can install major software, perform system maintainence, and other stuff. But using a
limited user on a day-to-day basis also provides you with decent protection from a bunch of threats:
if the malware is running under your limited-rights user, it can only do as much as you can. For
instance, a limited rights user can't edit the HKLM hive of the Registry, so any malware running
under the same user won't be able to touch that area. It's extremely simple t....
Microsoft Windows Dhcp Client Service Remote Code Execution Vulnerability
(0) What it is A exploit in the buggy OS of XP has been found, this one concering DHCP. OS effected
Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows
2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced
Server SP4 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP3 Microsoft
Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Professional Microsof....
Worm Disguises As Windows Genuine Advantage
be careful of the wgavn service ... (5) QUOTE IT security experts have warned of a worm that purports to be Microsoft's Windows
Genuine Advantage (WGA) anti-piracy tool. WGA has recently been branded as 'spyware' in
that it collects unnecessary hardware and software data from users' PCs. The Cuebot-K worm
spreads via AOL Instant Messenger, registering itself as a new system driver service called
'wgavn'. It carries the display name 'Windows Genuine Advantage Validation
Notification', and runs automatically during system startup. Once in place the worm disables
the Wi....
Attention All Ipb Users/admin
Important exploit discovered! (6) Invision Power Board v2.1.6 © 2006 IPS, Inc. This is what it is written on the bottom of the
board. Not so long ago, i was surfing somewhere, (i wont say where) and i discovered a "sql
injection"exploit, a perl script. QUOTE(step28 in the hack) 28. Reload and click on the
username to the admin. You are now logged in as an ADMIN!!! Admins, pm to receive
the link where i found this. with this hack, you can log in with any user without his pass.
It's really easy to do, you just need PERL, Opera webbrowser and 3 minutes fo your life... ....
Firefox Exploit
(0) QUOTE Earlier this week, I blogged about a site doing a bunch of different exploits, depending
on what you are running. One of the things the site will do is detect if you have Firefox, and
attempt to exploit it, using the InstallVersion.compareTo() vulnerability. Read More with
images Already found to be copying and pasting. Take this time to review our forum rules. Warning.
....
Fake Myspace Login
(4) I was on myspace one day right? And i viewed someones page and it sayed "You must login to do that"
And im used to myspace screwing up because theres so many things wrong with it. so anyways, I
started putting in my email and pass when i was about to press the login buttons and my sister
yelled "WAIT" and im like "WTF" "why are you yelling" and she showed me the url and it read
"Http://****.net/myspace....." and im like "Good call", so i finally talked to the guy that owned it
and just as we suspected, it sends the email and pass to him when you click "login". but anyway....
Top 7 Antivirus For Windows
(13) This will help for those who likes to know if they are using one of the best Anti-virus programs.
1. Platinum Internet Security 2005 2. PC-cillin Internet Security 2005 3. BitDefender Professional
Edition 4. ZoneAlarm Internet Security Suite 5. F-Prot for Windows 6. Kaspersky Anti-Virus Personal
7. G Data AntiVirusKit 2005 (AVK) Reference:
http://antivirus.about.com/cs/beforeyoubuy/tp/aatpavwin.htm ....
Serious Wmf Windows Exploit
No-one is safe right now (16) This has blown up big time in the last 3 days: http://www.f-secure.com/weblog/ ....
Latest Ie Exploit
does anyone still use this browser? (10) For Internet Explorer users, please note that there is a new exploit in the wild that is capable of
compromising a fully patched and updated WinXP machine:
http://www.eweek.com/article2/0,1759,18917...3119TX1K0000594 Microsoft has not released a fix yet.
From the article: QUOTE IE users should immediately disable Active Scripting via the Tools >
Internet Options > Security tab > Custom Level feature. Firefox and other alternative web
browsers are not affected. You would have to be tricked into going to a malicious website to have
any chance of being affecte....
Astahost Forum Access?
unable to view the forum (6) A friend of mine who has an account with astahost told me he's unable to access the website.
Only advertising and search engines pop up. He tried it from different computers, and i've tried
it too, with the same results. He was rather agitated as he had just come back from a trip and only
had a day's worth of credits left, with no way now to post and get more. What's up with
astahost, anyone?....
Microsoft Plugs Windows Worm Holes
14 flaws in Windows... (3) http://news.zdnet.com/2100-1009_22-5893344.html?tag=nl.e589 Here is another proof that the words
'Windows' and 'Security' simply cannot go together... And yet another good reason
for installing and start using Linux... Cheers! KoYoda....
Windows Security Scanners
(0) hi all, In this topic I'm gonna start explain about windows security scanners , leave your
comments and hope to enjoy /smile.gif' border='0' style='vertical-align:middle' alt='smile.gif' />
:: Nsauditor Network Security Auditor Nauditor is a network security scanner that allows to audit
and monitor network computers for possible vulnerabilities , to see all open ports and owner program
names, including the process loaded modules, kernel objects, memory details, remote address and
state of connections, dns name, country where from, service associated with connect....
[exploit] Phpbb <=2.0.12 Vulnerability.
How to be Admin on phpBB in Simple steps (2) Another vulnerability in PHPbb based forums that can be used to easily gain any user level access to
the forum. Even the admin account is not not secure with the default setup. Click Here for more
details about -"How to be Admin on phpBB in Simple steps!" And here is the Homepage of
PHPbb and click here to download the latest version.....
Online Scams Exploit Katrina Disaster
(10) In the wake of hurricane Katrina, several online scams have begun to circulate the Internet,
according to several security firms. Sophos warned users on Thursday not to open a malware-Infected
e-mail posing as news on the disaster. Possible subject lines of the e-mail could be QUOTE
"Re: g8 Tropical storm flooded New Orleans", "Re: g7 80 percent of our city underwater", and "Re:
q1 Katrina killed as many as 80 people". The group said there could be additional variants.
BetaNews on Thursday morning had received a variant of the above e-mails, however it app....
[exploit] Cpanel Versions Below And Equal To 9x
(7) Exploit for cPanel versions below and equal to 9x that takes advantage of a remote command execution
vulnerability. /* cPanel */ //headers #include //In/Out #include //sockets functions
#include //memory functions #include //strlen,strcat,strcpy #pragma comment(lib,"ws2_32.lib")
//for compile with dev-c++ link to "libws2_32.lib" #define Port 2082 //port for connect to cPanel
#define SIZE 1024 //buffer size to receive the data /*connect host:port*/ SOCKET Conecta(char
*Host, short puerto) { /*struct for make the socket*/ WSADATA wsaData; SOCKET Winsock;//l....
[article] Windows Syscall Shellcode
(0) Hi friends, this article shows how shellcode can be written and executed on a Windows host without
using any native API calls at all . By : Contact : Link to this article :
http://securityfocus.com/infocus/1844 Removed personal info ....
[exploit] Microsoft Server Message Block
(SMB) Remote Exploit (MS05-011) (0) Microsoft Server Message Block (SMB) Remote Exploit (MS05-011) /* * Windows SMB Client
Transaction Response Handling * * MS05-011 * CAN-2005-0045 * * This works against Win2k * *
cybertronic gmx net * http://www.livejournal.com/users/cybertronic/ * * usage: * gcc -o mssmb_poc
mssmb_poc.c * ./mssmb_poc * * connect via \\ip * and hit the netbios folder! * *
***STOP: 0x00000050 (0xF115B000,0x00000001,0xFAF24690, * 0x00000000) * PAGE_FAULT_IN_NONPAGED_AREA *
* The Client reboots immediately * * Technical Details: * ----------------- * * The driver MRXSMB.S....
[exploit] Phpbb 2.0.15 "viewtopic.php"
Remote PHP Code Execution Exploit (3) phpBB 2.0.15 "viewtopic.php" Remote PHP Code Execution Exploit #!/usr/bin/pyth0n print
"\nphpBB 2.0.15 arbitrary command execution eXploit" print " 2005 by rattle@awarenetwork.org"
print " well, just because there is none." import sys from urllib2 import Request, urlopen from
urlparse import urlparse, urlunparse from urllib import quote as quote_plus INITTAG = ' '
ENDTAG = ' ' def makecmd(cmd): return reduce(lambda x,y: x+'.chr(%d)'%ord(y),cmd
,'chr(%d)'%ord(cmd )) _ex = "%sviewtopic.php?t=%s&highlight=%%27." _ex += ....
[exploit] Microsoft Windows 2000 Plug And Play
(1) Microsoft Windows 2000 Plug and Play Universal Remote Exploit #2 (MS05-039) /*
HOD-ms05039-pnp-expl.c: 2005-08-10: PUBLIC v.0.2 * * Copyright © 2005 houseofdabus. * * (MS05-039)
Microsoft Windows Plug-and-Play Service Remote Overflow * Universal Exploit + no crash shellcode * *
.:: ::. * * --------------------------------------------------------------------- * Description: * A
remote code execution and local elevation of privilege * vulnerability exists in Plug and Play that
could allow an * attacker who successfully exploited this vulnerability to take * complete con....
Looking for windows, xp, pro, exploit, permission, setup, access, task, manager, login, permissions, deny, abiltity
|
|
Searching Video's for windows, xp, pro, exploit, permission, setup, access, task, manager, login, permissions, deny, abiltity
|
advertisement
|
|
