|
| |
|
|
|
|
|
|
| |
- TCP/IP Out of band data bug -
May 16, 1997 (05/16/1997)
- The bug sends Out Of Band data to any TCP/IP port listening for a
connection most web servers listen for connections on port 80. While this bug can cause
Win NT and Win 95 machines (at worst case) to crash, it will not make the system's data
available to hackers. There is a Unix program called Winnuke and a Windows program called
Bitchslap that can be used to generate these types of errors.
- Microsoft Corp. posted a fix for Windows NT
to replace the TCP/IP services (Service Pack 3 is 18mg for Intel and 25mg for Alpha ):
- ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/hotfixes-postSP2/oob-fix
|
| Guest Account - The presents a security threat and according to Microsoft ( KB Article ID: Q101232) should be disabled in order to enhance security (major). |
Windows NT "RedButton"
Issue
 | Microsoft Info |
| NT Security.com - RedButton
Bug General Synopsis - An
account created by NT is called Everyone. This has the potential of the
following:
1. Any Default Installation of Windows NT Workstation (v
3.51, 4.0) is vulnerable:
- the flaw allows the creation of a new entry in the registry which describes a new drive
share with access granted to Everyone.
- a potential intruder can then wait for the system to reboot
- after reboot the new share is published on the network to Everyone. By sharing system
drive one can obtain a copy of a password file updated by rdisk -s from the
%SYSTEMROOT%\Repair directory, etc.
2. Any Default Installation of Windows NT Server or
Workstation (v 4.0) is vulnerable:
- the flaw allows the creation of a new entry in the registry which describes a reference
to a Trojan horse program located on the intruder's computer e.g.
\\xxx.xxx.xxx.xxx\Share\Smth.exe
- potential intruder can then wait for an interactive logon
- after the user logs on to the server the Trojan horse program is executed. Obviously,
the Trojan horse program could do about anything if the logged user is an Administrator.
The Trojan can create a share (see above) if the logged user has guest or ordinary user
privileges.
General Solution - Remove the account Everyone
from your system. This includes any access rights granted and recorded within the system
registry. You must also insure that the Permissions are changed and propagated to all your
NT computers.
|
|
|
|
|
NT 4.0 (by country) - ftp.microsoft.com/bussys/
winnt/winnt-public/fixes/. |
| |
|
   
[ NT Service Pak 4 ]
Disclaimer: We do not hold any responsibility or creative control over
the contents of the web sites and documents referenced by our links. They solely express the
opinions of their respective authors and not Ugenie PCS. Items and information are
provided as links because they appear to have relevant content to topics presented on our
web site(s). Ugenie PCS does not continually verify the truthfulness or locations
of their contents. Ugenie PCS does not endorse, recommend, or guarantee any particular software.
Software and other items on these pages are provided as a service only and maybe copyrighted by their respective owners. Requests for
additions to, or removal from, this or other pages should be sent to Content
Management@CezWright.com.
Additionally
Disclaimer: We do not hold any responsibility or creative control over
the contents of the web sites and documents referenced by our links. They solely express the
opinions of their respective authors and not Ugenie PCS. Items and information are
provided as links because they appear to have relevant content to topics presented on our
web site(s). Ugenie PCS does not continually verify the truthfulness or locations
of their contents. Ugenie PCS does not endorse, recommend, or guarantee any particular software.
Software and other items on these pages are provided as a service only and maybe copyrighted by their respective owners. Requests for
additions to, or removal from, this or other pages should be sent to Content
Management@CezWright.com.
Additionally
Last
Edit: 2004-03-04 08:41 AM -0500
Auto Update: Saturday, August 20, 2005 12:29 PM -0400
|
hits since Dec 11, 1998
|
