Re: priviledge escalation techniques

From: BSK (bishan4u_at_yahoo.co.uk)
Date: 01/20/05

  • Next message: Michael Howard: "RE: priviledge escalation techniques" 
    Date: Thu, 20 Jan 2005 10:07:08 +0000 (GMT)
To: miguel.dilaj@pharma.novartis.com, pen-test@securityfocus.com

    > The main question here is: did it worked BEFORE the
    > change?
    > It can perfectly be that the Accessibility Tools
    > were disabled. Check the
    > control panel.

    Yes. sethc.exe would get inviked when I entered
    'shift' 5 times BEFORE the change. After replacing
    sethc.exe with cmd.exe thru my linux, the sethc.exe
    exists and opens command prompt on clicking but not on
    pressing 'shift' 5 times.

    >
    > BSK <bishan4u@yahoo.co.uk>
    > 20/01/2005 05:44
    >
    >
    > To: Miguel Dilaj/PH/Novartis@PH
    > cc:
    > Subject: Re: priviledge escalation
    > techniques
    >
    >
    > Hi,
    >
    > > With the option of changing sethc.exe you are not
    > > running anything extra,
    >
    > I have a Windows 2000 and Fedora Core 1 in dual
    > boot.
    > I logged into my linux and replaced the sethc.exe
    > with
    > cmd.exe.
    >
    > Now when I boot into windows 2000 (SP4 and fully
    > patched) and press 'shift' 5 times (before or after
    > login) nothing appears. When I search for
    > 'sethc.exe',
    > its found and on clicking gives command prompt, but
    > it
    > happens only by clicking, not by entering 'shift' 5
    > times.
    >
    > Any idea, wats wrong here?
    >
    > thanx,
    > bshan
    >
    >
    >
    >
    >
    >
    >
    ___________________________________________________________
    >
    > ALL-NEW Yahoo! Messenger - all new features - even
    > more fun! http://uk.messenger.yahoo.com
    >
    >
    >
    >

            
            
                    
    ___________________________________________________________
    ALL-NEW Yahoo! Messenger - all new features - even more fun! http://uk.messenger.yahoo.com

  • Next message: Michael Howard: "RE: priviledge escalation techniques"

    Relevant Pages

    • Which pda personal media to get?
      ... Based on linux OS with command prompt (so alot of softwares can be ... Got wireless n bluetooth built-in. ...
      (comp.sys.handhelds)
    • Re: [OT] Text editors Re: Great SWT Program
      ... Linux appears to be steadily replacing all Unices with the possible exception of Solaris and possibly BSD. ... It will be interesting to see what happens to the IBM mainframe systems as the current generation of mainframe programmers retire: I believe theres still a LOT of assembler, not to mention CICS, IMS and JCL, in those systems. ... martin@ | Martin Gregorie ...
      (comp.lang.java.programmer)
    • personal portable media
      ... Based on linux OS with command prompt (so alot of softwares can be ... Got wireless n bluetooth built-in. ... no wireless built-in n no linux os ...
      (rec.windsurfing)
    • Re: Find components of "setup"?
      ... There are similar concepts in Linux. ... 'help' at the command prompt, and you'll get a list of built-ins. ... (shell), sometimes not. ... This applies to, say, Perl scripts as well. ...
      (comp.os.linux.misc)
    • Re: Find components of "setup"?
      ... There are similar concepts in Linux. ... 'help' at the command prompt, and you'll get a list of built-ins. ... (shell), sometimes not. ... This applies to, say, Perl scripts as well. ...
      (alt.os.linux)