Re: Fatal bug in NT 4.0 server

Yiorgos Adamopoulos (Y.Adamopoulos@noc.ntua.gr)
Mon, 7 Apr 1997 14:26:23 +0300

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Paul Melson: "Re: Password problem in Trumpet Winsock."
Previous message: Mikhail Iakovlev: "Linux - buffer overflow in filter"
In reply to: Vytautas Vysniauskas: "Fatal bug in NT 4.0 server"

>     It is known about big hole in NT 4.0 security system
>     that allows for a user without any access permission to mount NT
>     server root directory (disk C:) in r/w mode and to take a
>     complete control over NT system ? I heard only some little

Under 4.0 (no service packs) it is possble to mount drive C: (and any other
drive) R/W if you have a user account.  Note that this is the default
installation and therefore it is not a bug but a missconfiguration:

smbclient '\\ntserver\c$' -U user

should give you the smb> prompt.

Installing SP2 removes these defaults.

-Yiorgos.

Next message: Paul Melson: "Re: Password problem in Trumpet Winsock."
Previous message: Mikhail Iakovlev: "Linux - buffer overflow in filter"
In reply to: Vytautas Vysniauskas: "Fatal bug in NT 4.0 server"