Re: Microsoft Windows keybd_event validation vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Microsoft Windows keybd_event validation vulnerability
From: galacticjello@xxxxxxxxx
Date: 6 Sep 2005 22:18:36 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

That's because it's not an exploit.  If you have a program that can run a 
shell, and it is running under a privileged account, guess what?  The shell 
will run under the same privileged account.

This "exploit" is a "by design".

The writers suggest that if you are logged in to a privileged account, then do 
a "run as" to run another app under a non-privliged account, you can script 
explorer to run a shell as your original privileged account (which you could 
just do anyway by dropping to a command prompt).

They must be dragging the bottom of the barrel for "exploits".

Prev by Date: MDKSA-2005:156 - Updated ntp packages fix small security-related issue.
Next by Date: Rule bypassing in CheckPoint NGX R60
Previous by thread: Re: Microsoft Windows keybd_event validation vulnerability
Next by thread: [OpenPKG-SA-2005.020] OpenPKG Security Advisory (proftpd)
Index(es):
- Date
- Thread