[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation

To: KF_lists <kf_lists@xxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
From: Barry Fitzgerald <bkfsec@xxxxxxxxxxxxxxxx>
Date: Wed, 13 Oct 2004 10:50:49 -0400

KF_lists wrote:

ISS would like to have you believe otherwise... when I contacted them about the Local SYSTEM escalation in BlackICE we went in circles over the fact that I feel that taking local SYSTEM on a win32 box IS a problem and they don't. They tryed to say some crap like "in all our years in the industry we have never had a customer state that local windows security was a concern... blah blah (paraphrasing)". And something along the lines of "Windows is not a true multi-user system (like unix) so local escalation means nothing."

-KF

*feigned look of surprise*

Then how do they explain trojan horses, adware, and spyware?!?

-Barry

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
  - From: Derek Soeder
- Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
  - From: Barry Fitzgerald
- Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
  - From: KF_lists

Prev by Date: Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
Next by Date: Re: [Full-Disclosure] EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability
Previous by thread: Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
Next by thread: Re: [Full-Disclosure] EEYE: Windows VDM #UD Local Privilege Escalation
Index(es):
- Date
- Thread