Great Circle Associates Firewalls
(October 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: NT Security
From: Keith McCammon <keithm @ asymetrix . com>
Date: Wed, 02 Oct 96 09:26:00 PDT
To: "'Firewalls'" <firewalls @ greatcircle . com> 

Following along the lines of C2 orangebook being absolutely useless,
there is an alleged  security flaw with NT4 and possibly 3.5x that allows   

a remote user to change the administrator password with no
authenticaction whatsoever.

I don't have the details for this so don't ask, but you might want to   
look at RPC and the Win32 api...
   

       I am puzzled as to why Microsoft is keeping mum about this, but if   
you do     find the problem and call them to confirm it, they will.

Keith McCammon
MIS Analyst
Asymetrix Corp
*Opinions Are My Own*
Indexed By Date Previous: Re: Gauntlet vs. Sidewinder
From: bjm @ ottawa . net (Brian McIntosh)
Next: Re: Gauntlet vs. Sidewinder
From: Arley Carter <ac @ twinds . com>
Indexed By Thread Previous: RE: NT Security
From: Keith McCammon <keithm @ asymetrix . com>
Next: RE: NT Security
From: fdehert @ innet . be (Frank J.J. De Hert)
Google
 
Search Internet Search www.greatcircle.com