Merit Network
 Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives
Network Security
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical case sesitivity vulnerability in winnt

  • From: Paul Howell
  • Date: Wed Mar 17 06:54:40 1999 
At http://www.cybermedia.co.in/NT_Security/CS_vulnerability.htm
is a description of a vulnerability in WinNT.  

Here is a brief description of the problem:

Description: 
 Using the permissions on the "\??" object directory and by exploiting the 
 case sensitivity of object manager it is possible to trojan any system 
 executables. 
        

The site also has example code.  I have not tried it. 

< paul


Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.