GetAd.exe testing

From: dwreck@hushmail.com
Date: 10/18/02


Date: Fri, 18 Oct 2002 12:58:23 -0700
To: focus-ms@securityfocus.com
From: dwreck@hushmail.com


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Downloaded this:

Security Advisory, Exploit Source and Compiled Binary:
http://getad.chat.ru/

Ran it as a user on a W2K server that had perms set on the cmd.exe to Admins and System only....didn't work.

The exploit does run correctly on a default install of W2K.

Can anyone else confirm this. It'd be nice if seting perms on one file would nullify this .exe

Thanks,

DWreck
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.2 (Java)
Note: This signature can be verified at https://www.hushtools.com/verify

wlsEARECABsFAj2wZ1IUHGR3cmVja0BodXNobWFpbC5jb20ACgkQdSHQ/0l6RIyMFwCg
toDxWRndBlqRd7eZoYHWo/axp6gAnj/WoBxrT97lb+DGkchS6ciy7MkQ
=b2mX
-----END PGP SIGNATURE-----

Get your free encrypted email at https://www.hushmail.com



Relevant Pages

  • Re: GetAd.exe testing
    ... ('binary' encoding is not supported, ... >Security Advisory, ... >Ran it as a user on a W2K server that had perms set on the cmd.exe to ... Admins and System only....didn't work. ...
    (Focus-Microsoft)
  • RE: SBS2003 wont display the backup and monitoring pages from Serv
    ... Are your sites in IIS using the "any IP" or are you using the actual IP of ... your server? ... logged in as Administrator and have all perms set full ... > default.htm under the backup web site. ...
    (microsoft.public.windows.server.sbs)
  • RE: SBS2003 wont display the backup and monitoring pages from Serv
    ... the "any IP" or the actual IP of the server? ... "Michael Patrick" wrote: ... logged in as Administrator and have all perms set full ... >> default.htm under the backup web site. ...
    (microsoft.public.windows.server.sbs)