Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Sign up or Login to participate.
|
|||||||
Begin your free trial now
Pay-as-you-go options starting at $10/user/month
Pay-as-you-go options starting at $10/user/month
Win2k Permissions Could Allow Trojan Horse
|
|
Thread Tools | Search this Thread |
|
#1
10-31-2002
|
||||
|
||||
|
Windows 2000 Default Permissions Could Allow Trojan Horse Program
Issue:
On Windows 2000, the default permissions provide the Everyone group with Full access (Everyone:F) on the system root folder (typically, C:\). In most cases, the system root is not in the search path. However, under certain conditions - for instance, during logon or when applications are invoked directly from the Windows desktop via Start | Run - it can be. This situation gives rise to a scenario that could enable an attacker to mount a Trojan horse attack against other users of the same system, by creating a program in the system root with the same name as some commonly used program, then waiting for another user to subsequently log onto the system & invoke the program. The Trojan horse program would execute with the user's own privileges, thereby enabling it to take any action that the user could take. Affected Software: Microsoft Windows 2000 Patch availability: This vulnerability requires an administrative procedure rather than a patch. The needed changes are discussed in the FAQ. |
|
 |
| Similar Topics | ||||
| Topic | Replies | Forum | ||
 Trojan Horse Downloader.purity scan + Trojan Horse Downloader.Generic2
|
23 | Virus and Malware Removal | ||
|
Trojan horse fix
|
1 | Virus and Malware Removal | ||
|
trojan horse lop.AS Trojan, Unable To Work Out.
|
9 | Virus and Malware Removal | ||
|
help trojan horse lop.aq
|
3 | Virus and Malware Removal | ||
|
WIN2k Services - Permissions
|
0 | Windows OS | ||
| Thread Tools | Search this Thread |
|
|
All times are GMT -4. The time now is 11:50 AM.