+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 27 of 27
Windows Server 2008 R2 Thread, Massive HOLE!!! in Technical; They're essentially the same OS, so yes....
  1. #16


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,757
    Thank Post
    221
    Thanked 2,629 Times in 1,938 Posts
    Rep Power
    779
    They're essentially the same OS, so yes.
    Last edited by Arthur; 31st July 2011 at 02:13 PM.

  2. #17
    eddyc's Avatar
    Join Date
    Aug 2008
    Location
    Bristol
    Posts
    432
    Thank Post
    98
    Thanked 47 Times in 43 Posts
    Rep Power
    21
    There is some more information on this, plus a demo of the hole here;
    Windows security hole gives anyone access to computer without logging into User Account | The Windows Club

  3. #18

    Steve21's Avatar
    Join Date
    Feb 2011
    Location
    Swindon
    Posts
    2,689
    Thank Post
    334
    Thanked 515 Times in 483 Posts
    Rep Power
    179
    Quote Originally Posted by eddyc View Post
    My issue with that, Is it means the user needs to actually "change" the system. They're replacing the ease of access exe with a new exe. Which they shouldn't have access to do in the first place?

    And even once they do that, they'd only have access to local files, aka roaming profiles etc wouldn't be accessible.

    "imo" it's similar to saying install a keylogger and they can log in... Well yeah, but they shouldn't be able to? (Unless I missed something)

    Steve

  4. #19


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,757
    Thank Post
    221
    Thanked 2,629 Times in 1,938 Posts
    Rep Power
    779
    Quote Originally Posted by Steve21 View Post
    My issue with that, Is it means the user needs to actually "change" the system. They're replacing the ease of access exe with a new exe. Which they shouldn't have access to do in the first place?
    ^^ Exactly! I agree with the response Microsoft gave in that article. It's extremely easy to replace any file with a malicious one once you have physical access.

    If this is the same "hole" which @cpjitservices is talking about, I would rate it 1 out of 10 on @localzuk's scale.

  5. #20

    Steve21's Avatar
    Join Date
    Feb 2011
    Location
    Swindon
    Posts
    2,689
    Thank Post
    334
    Thanked 515 Times in 483 Posts
    Rep Power
    179
    Quote Originally Posted by Arthur;713142If this is the same "hole" which [MENTION=27500
    cpjitservices is talking about, I would rate it 1 out of 10 on @localzuk's scale.
    There are some easy ways to access it, if you have access to it (but not sure about RDP) for example, using PE boot CD gives instant access to cmd. Run few "rename/copy" commands, and there you have access to any program through ease of access again. But again, need access to the machine at least :P

    Steve

  6. #21
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,192
    Thank Post
    134
    Thanked 340 Times in 287 Posts
    Rep Power
    84
    Quote Originally Posted by Steve21 View Post
    There are some easy ways to access it, if you have access to it (but not sure about RDP) for example, using PE boot CD gives instant access to cmd. Run few "rename/copy" commands, and there you have access to any program through ease of access again. But again, need access to the machine at least :P

    Steve
    Bitlocker helps out with this - not that every machine has a TPM chip in though......

  7. #22

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,168
    Thank Post
    98
    Thanked 319 Times in 261 Posts
    Blog Entries
    4
    Rep Power
    112
    Quote Originally Posted by jamesfed View Post
    Bitlocker helps out with this - not that every machine has a TPM chip in though......
    A USB key's always an option.

  8. #23
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,192
    Thank Post
    134
    Thanked 340 Times in 287 Posts
    Rep Power
    84
    Quote Originally Posted by jamesb View Post
    A USB key's always an option.
    Certinly be - we've got SD cards in all our staff laptops that don't have TPM.

  9. Thanks to jamesfed from:

    FN-GM (2nd August 2011)

  10. #24

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,823
    Thank Post
    875
    Thanked 1,675 Times in 1,458 Posts
    Blog Entries
    12
    Rep Power
    444
    Quote Originally Posted by jamesfed View Post
    Certinly be - we've got SD cards in all our staff laptops that don't have TPM.
    Good idea didnt think of that!

  11. #25
    happymeal's Avatar
    Join Date
    May 2011
    Location
    Darwen
    Posts
    443
    Thank Post
    88
    Thanked 97 Times in 60 Posts
    Rep Power
    52
    Quote Originally Posted by localzuk View Post
    So, on a scale of 1-10, with 10 being 'oh my god, our servers are going to go on a rampage eating children' and 1 being 'nothing to see here'
    Hmmm - just noticed it's oddly quiet here, and my server has gone walkies.

    Hang on, who could that be knocking on my door...

  12. #26
    jamesfed's Avatar
    Join Date
    Sep 2009
    Location
    Reading
    Posts
    2,192
    Thank Post
    134
    Thanked 340 Times in 287 Posts
    Rep Power
    84
    Quote Originally Posted by FN-GM View Post
    Good idea didnt think of that!
    It works a treat, the Acers and older HPs that we've got have a SD card which goes all the way into the machine so it dosn't even stick out.

    One of our new buying musts for staff laptops is a TPM chip now

  13. #27

    Join Date
    Jan 2007
    Location
    Nottinghamshire
    Posts
    530
    Thank Post
    1
    Thanked 84 Times in 58 Posts
    Rep Power
    38
    Or just set the bios to only boot from hdd, unless your bios sucks, like toshiba, asus, older foxconn

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Massive Google hard drive survey
    By mark in forum Hardware
    Replies: 2
    Last Post: 20th February 2007, 08:48 PM
  2. Replies: 10
    Last Post: 29th March 2006, 02:52 PM
  3. N2H2 is officially spyware - on a massive scale
    By ICTNUT in forum Educational Software
    Replies: 23
    Last Post: 22nd November 2005, 10:32 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •