Re: [Full-disclosure] Microsoft Windows keybd_event validation vulnerability

To: Frederic Charpentier <fcharpen@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Microsoft Windows keybd_event validation vulnerability
From: Jerome Athias <jerome.athias@xxxxxxx>
Date: Tue, 06 Sep 2005 13:20:37 +0200
Cc: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
In-reply-to: <431D7582.2070207@xxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <431D7582.2070207@xxxxxxxxxxxxxxxx>
User-agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)

It was posted by Andres Tarasco to full-disclosure allready

Additionaly:

1) french version of the advisory:
 
http://www.athias.fr/alertes-bulletins-securite/20050905_Microsoft.Windows_Validation.keybd_event.html

2) I use to use this trick to obtain SYSTEM privileges with just ADMIN
privileges:

AT 20:00 /INTERACTIVE cmd.exe

Cheers,
/JA

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

References:
- Microsoft Windows keybd_event validation vulnerability
  - From: Frederic Charpentier

Prev by Date: [ GLSA 200509-04 ] phpLDAPadmin: Authentication bypass
Next by Date: [USN-145-2] wget bug fix
Previous by thread: Microsoft Windows keybd_event validation vulnerability
Next by thread: Re: Microsoft Windows keybd_event validation vulnerability
Index(es):
- Date
- Thread