Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: priviledge escalation techniques

from [BSK] Network Security [Permanent Link]
Subject: Re: priviledge escalation techniques
Date: Thu, 20 Jan 2005 11:13:02 +0000 (GMT) 
That's really strange. It works in WinXP.
Perhaps there was a change in functionality (for
bad!) from Win2K to XP?
The only possibility I can imagine is either:
a) something blocks launching interactive programs
before logon in 2K, but 
not in XP
b) 2K is checking that sethc.exe is valid before
launching it, and XP is 
not doing that check (I don't really think that this
is the case, but...)

Do you have any XP box to test?? I'll try to get
hold of a 2K as well.


I couldn't try on a XP box, but tried on a windows
2000 server. It behaves very differently here, after
the replacement of sethc.exe with cmd.exe:
1. before logging in, pressing 'shift' 5 times,
invokes sethc.exe but the original one, which in fact
doesn't exist in system32 directory, atleast with same
name. I think windows regenerated that file but with
some other name.
2. if I press 'shift' 5 times after logging in,
nothing appears, neither original sethc.exe nor the
replaced sethc.exe

Any clues?


        
        
                
___________________________________________________________ 
ALL-NEW Yahoo! Messenger - all new features - even more fun! 
http://uk.messenger.yahoo.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Recent Linux vulnerabilities, Michael Richardson
Next by Date:  Re: Discovering users by RCPT TO, Tobias Glemser
Previous by Thread:  RE: priviledge escalation techniques, Marc Maiffret
Next by Thread:  RE: priviledge escalation techniques, Dave Wells
Indexes:  [Date] [Thread] [Top] [All Lists]