Re: two questions that need answering

From: Bronek Kozicki (brok@rubikon.pl)
Date: 01/29/02

• Previous message: Erik Birkholz: "RE: two questions that need answering"
• In reply to: Erik Birkholz: "RE: two questions that need answering"
• Next in thread: Dan B: "Re: two questions that need answering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Bronek Kozicki" <brok@rubikon.pl>
To: <focus-ms@securityfocus.com>
Date: Tue, 29 Jan 2002 10:09:52 +0100

> 2. Yes. You need to compile it with the nddeapi.lib linked. Then
you need
> to have NetDDE running. This can be a bit of a rub, since most "user"
> accounts don't have the privilege to start services. Then just run
the

This particular service (NetDDE) can be started by ordinary user. I
know, I have tested it, and gained LocalSystem privileges using this
exploit with no problem.

B.

---

• Previous message: Erik Birkholz: "RE: two questions that need answering"
• In reply to: Erik Birkholz: "RE: two questions that need answering"
• Next in thread: Dan B: "Re: two questions that need answering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ms  > 2002-01