Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Windows DoS in certain pGina configurations

from [Steven] Network Security [Permanent Link]
Subject: Windows DoS in certain pGina configurations
Date: Fri, 22 Oct 2004 13:20:42 -0400 
Date:                    October 22, 2004
Product/Service:   pGina 1.7.6 and probably older version
Issue:                    Windows DoS in certain pGina configurations
URL:                    http://pgina.xpasystems.com/
Advisory URL:     http://www.lovebug.org/pgina_dos.txt

Service Overview:

pGina is a program that will work in place of Microsoft's GINA (msgina.dll).
It's a great tool that works in conjunction with various plugins to allow
different methods of user authentication.  For example, instead of just
using standard local user authentication or domains AD, it can be compared
agains a POP3 server, MySQL database, LDAP, Slashdot user accounts, and many
more.  It is open source and readily available for free for anyone to use
and implement.

Issue:

A small problem can exist when the administrator does not disable the
"Restart" or "Shutdown" option from the login screen.  The problem exists
when the machine is running Remote Desktop.  If an attacker connects to the
a target machine, the attacker can simply reboot or shutdown the machine at
the click of a button.  The choices to restart or shutdown are available to
a user when connecting via Remote Desktop and an attacker can use this as a
way to deny service.

Solutions:

The administrator simply needs to configure the machine to have the shutdown
and restart options disabled.  This is very easily done and accessible
through the pGina configuration executable.


Vendor Response:

There is no need to get a response from the vendor as this issue can be
taken care of through proper administration.  People just need to be awar
that this problem can and does exist.

---------------------------

Questions/Comments/Other?  Drop me a line.  Go Hokies! :D


-Steven
steven@lovebug.org
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Windows DoS in certain pGina configurations, Steven <=
Previous by Date:  Is Windows up to snuff for running our world?, Richard M. Smith
Next by Date:  Norton AntiVirus 2004/2005 Script Blocking Redux, Daniel Milisic
Previous by Thread:  Is Windows up to snuff for running our world?, Richard M. Smith
Next by Thread:  Norton AntiVirus 2004/2005 Script Blocking Redux, Daniel Milisic
Indexes:  [Date] [Thread] [Top] [All Lists]