Re: [Full-disclosure] Flaw in Microsoft Domain Account Caching Allows Local Workstation Admins to Temporarily Escalate Privileges and Login as Cached Domain Admin Accounts (2010-M$-002)

Hash: SHA1

Kurt Dillard said the following on 13/12/10 20:09:
So far I agree with Thor. Did I miss something? Has anyone demonstrated
using the locally cached credentials to access resources across the network?
So far I haven't seen anything new or interesting in this thread:

Since the procedure involves the disconnection from network, IMHO this "flaw"
only demonstrates that the physical access is equal to the root/Administrator


- --
+--[Luigi Rosa]--

You talk like a Minbari, Commander.
Perhaps there was some small wisdom in letting your species survive.
--Neroon, "Legacies"
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla -


Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia -

Relevant Pages

  • Re: BIND9 SERVFAIL on some .gov addresses
    ... This implies a connectivity issue between your client and the nameservers, ... dig on our network would work. ... whether it's a nameserver asking for it or a client? ... Comment: Using GnuPG with Mozilla - ...
  • Re: [opensuse] Nokia Nseries and gnokii
    ... quality software, instead of what looks to be a second tier component ... update the software on a Nokia phone? ... they have to comply to national and network ... Comment: Using GnuPG with SUSE - ...
  • Re: Does there exist something like a networked filestorage
    ... You need GnuPG to verify this message ... > now like to fill them up with hard disks ... > them to a network but present them as one single filespace. ... device like Peter's ENBD, search for "ENBD". ...
  • GnuPG vs Digital Certificates?
    ... I've noticed many applications can use GnuPG or digital ... certificates and I would like to standardize if possible on the solution ... Better Management for Network Security ...
  • Re: [opensuse] IPv6 firewall
    ... IPv6 has been in the works for many years (I first ... My mobile provider uses NAT 10.x.x.x addresses while the land network ... the US and Asian address requirements will increase usage ... Comment: Using GnuPG with SUSE - ...