Previous articleBack to news listNext article
|
Sponsored links |
Want to become one of our authors and see your work published on ALLSeek.iNFO ?
|
| Agnitum Outpost Firewall Tray Icon Lets Local Users Execute Commands With SYSTEM Privileges |
|---|
Categorie: Vulnerability
Posted: 2004-01-19 by ReCall
Views: 430
Source: Click here
| Current Rating: Not rated
|
|
| Details |
|---|
Description: A vulnerability was reported in Agnitum's Outpost Firewall. A local user can gain System privileges.
Secure Network Operations Strategic Reconnaissance Team reported that 'outpost.exe' runs with SYSTEM privileges and allows a local user to right-click on the tray icon and then load CMD.EXE with SYSTEM privileges. The local user can then execute arbitrary commands with SYSTEM privileges.
If you want to take local system rights from Agnitum Outpost Firewall do
the following steps.
1. right click tray icon...
2. choose "options..."
3. choose application or plug-ins
4. click Add...
5. browse for c:winntsystem32cmd.exe and right click on it...choose open.
Now you have a command prompt running as the user SYSTEM.
There is also a similar alternate method...
1. double click tray icon.
2. click Help.
3. click contents.
4. right click help content...
5. choose view source.
6. you now have notepad.exe running as SYSTEM... taking cmd.exe from here is
a matter of going to file then open, and duplicating step 5 above.
A demonstration exploit screenshot is available at:
http://www.secnetops.biz/images/SRT2004-01-17-0628.jpg
Impact: A local user can run operating system commands with SYSTEM privileges.
Solution: No solution was available at the time of this entry. The vendor reportedly plans to issue a fix shortly.
|
| Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=651
|
| User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
|
Previous articleBack to news listNext article
|
