[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Samba Remote Zero-Day Exploit
- To: Stefan Kanthak <stefan.kanthak@xxxxxxxx>
- Subject: Re: [Full-disclosure] Samba Remote Zero-Day Exploit
- From: Dan Kaminsky <dan@xxxxxxxxxxx>
- Date: Sat, 6 Feb 2010 17:30:08 -0500
On Feb 6, 2010, at 5:26 PM, "Stefan Kanthak" <stefan.kanthak@xxxxxxxx>
wrote:
> Dan Kaminsky wrote on February 06, 2010 6:43 PM:
>
>> You need admin rights to create junctions.
>
> OUCH!
> No, creating junctions (as well as the Vista introduced symlinks)
> DOESN'T need admin rights!
>
> [snip]
>
Really? Try. Especially remotely over SMB w/o remote interactive.
> Stefan
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/