[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: Re: [FD] Defense in depth -- the Microsoft way (part 80): 25 (in words: TWENTY-FIVE) year old TRIVIA
From: Tavis Ormandy <taviso () gmail ! com>
Date: 2022-05-12 15:15:15
Message-ID: t5j8a2$15nf$1 () ciao ! gmane ! io
[Download RAW message or body]
On 2022-05-10, Stefan Kanthak wrote:
>| Their reasoning centers around the requirement to have admin
>| privileges to pull off the attack.
>
> OUCH! Unprivileged users can but write this registry entry below
> [HKEY_CURRENT_USER\Software\Microsoft\Command Processor]
They're explaining that you need privileges to attack *other* users. I don't
think anyone is disputing you can "attack" yourself.
I know, I know - we've had this discussion before, and nothing will
convince you that this isn't a vulnerability :)
Tavis.
--
_o) $ lynx lock.cmpxchg8b.com
/\\ _o) _o) $ finger taviso@sdf.org
_\_V _( ) _( ) @taviso
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic