RE: More on Shatter
From: Kris Kistler (krisk@kbeta.com)Date: 08/26/02
- Previous message: Syzop: "Re: More on Shatter"
- In reply to: HalbaSus: "re: More on Shatter"
- Next in thread: Richard Masoner: "RE: More on Shatter"
- Next in thread: Mark Ribbans: "RE: More on Shatter"
- Reply: Richard Masoner: "RE: More on Shatter"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Kris Kistler" <krisk@kbeta.com> To: <vuln-dev@securityfocus.com> Date: Sun, 25 Aug 2002 20:26:29 -0500
While I haven't tested this particular piece of code remotely, it should be
noted that when access is provided via Terminal Services, Citrix MF, PcAny,
or with any countless number of other "remote access" type services, any
code run is running in the "local machine" context, which makes this and
many other "local" exploits actually quite dangerous.
K
> -----Original Message-----
> From: HalbaSus [mailto:halbasus@go.ro]
> 3. As long as someone needs phisical access for this it's not
> really such a
> serious problem.. usually when someone has phisical access to a
> computer he
> can do mostly whatever he/she wants. Without using exploits...
> 4. And probably the most important reason: Shatter is one of those mostly
> harmless yet very neet exploits that you can impress your friends
> with... or
- Previous message: Syzop: "Re: More on Shatter"
- In reply to: HalbaSus: "re: More on Shatter"
- Next in thread: Richard Masoner: "RE: More on Shatter"
- Next in thread: Mark Ribbans: "RE: More on Shatter"
- Reply: Richard Masoner: "RE: More on Shatter"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
