GetAd.exe testing

From: dwreck@hushmail.com
Date: 10/18/02


Date: Fri, 18 Oct 2002 12:58:23 -0700
To: focus-ms@securityfocus.com
From: dwreck@hushmail.com


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Downloaded this:

Security Advisory, Exploit Source and Compiled Binary:
http://getad.chat.ru/

Ran it as a user on a W2K server that had perms set on the cmd.exe to Admins and System only....didn't work.

The exploit does run correctly on a default install of W2K.

Can anyone else confirm this. It'd be nice if seting perms on one file would nullify this .exe

Thanks,

DWreck
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.2 (Java)
Note: This signature can be verified at https://www.hushtools.com/verify

wlsEARECABsFAj2wZ1IUHGR3cmVja0BodXNobWFpbC5jb20ACgkQdSHQ/0l6RIyMFwCg
toDxWRndBlqRd7eZoYHWo/axp6gAnj/WoBxrT97lb+DGkchS6ciy7MkQ
=b2mX
-----END PGP SIGNATURE-----

Get your free encrypted email at https://www.hushmail.com