Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Bug submission

from [Discini, Sonny] Network Security [Permanent Link]
Subject: Re: Bug submission
Date: Fri, 25 Feb 2005 12:01:10 -0500 
Originally this issue was explained and patched here:
http://support.microsoft.com/?id=302753
 
SYMPTOMS
After you establish a group policy to restrict access to a drive by
selecting the Hide these specified drives in My Computer and Prevent
access to drives from My Computer options, you can use a Microsoft
Office program to browse and read the contents of the drive.

CAUSE
This problem occurs when your operating system is Microsoft Windows
2000. The problem occurs because of the way that policies are applied.
When you restrict access to a drive by establishing a group policy,
restrictions apply to users, but they do not apply to services and
programs. Because the browse feature is performed through a program such
as Microsoft Excel or Microsoft Word, the program is permitted to view
the drive. As a result, when you define a group policy and select the
Hide these specified drives in My Computer and Prevent access to drives
from My Computer options on a specific drive, the drive is read-only
with respect to Microsoft Office 2000 programs.

RESOLUTION
To resolve this problem, obtain Microsoft Office Service Pack 3 or
later.
************************************************************************
*************
 
This issue has been re-introduced in Office 10 (Word 2002,  Excel 2002,
etc.) SP3
 
It may also apply to Office 11 but we have not tested it. 
 
ADDITIONAL FINDINGS
The same condition occurs when you insert a flashdrive and a common
dialog box is presented asking you what you'd like to do. If you select
open drive you can then browse all of the hidden and restricted drives
the same way that you can using MS office.
 
HOST
Win XP Pro SP2, all available patches as of 2/23/05
Windows 2000 Server SP4, all available patches as of 2/23/05, running
Active Directory.
 
VENDOR RESPONSE
This issue was reported to Microsoft on Feb 11, 2005, acknowledged by
support, and as of today our best efforts to get a hotfix (or even a
commitment to produce a hotfix at some later date) have been fruitless.
 
Sonny Discini, Senior Network Security Engineer
Department of Technology Services
Enterprise Infrastructure Division
Montgomery County Government 

--
NTBugtraq Editor's Note:

Most viruses these days use spoofed email addresses. As such, using an 
Anti-Virus product which automatically notifies the perceived sender of a 
message it believes is infected may well cause more harm than good. Someone who 
did not actually send you a virus may receive the notification and scramble 
their support staff to find an infection which never existed in the first 
place. Suggest such notifications be disabled by whomever is responsible for 
your AV, or at least that the idea is considered.
--
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: Bug submission, Discini, Sonny <=
Previous by Date:  Re: Outlook exploit, Arthur Donkers
Next by Date:  Change to Object Caching in IE with XP SP2 applied, Don Tuer
Previous by Thread:  Securing your Partners survey, Russ Cooper
Next by Thread:  vbscript.dll regular expression object (RegExp) memory leak, g g
Indexes:  [Date] [Thread] [Top] [All Lists]