Bugtraq mailing list archives
Re: L0pht Security Advisory: Windows NT
From: paul () ARGO DEMON CO UK (Paul Ashton)
Date: Fri, 19 Feb 1999 11:23:44 +0000
Dildog <dildog () L0PHT COM> writes:
L0pht Security Advisory
--- Workarounds/Fixes: --- I developed a patch for this security problem in the form of a Win32 Service program that can be installed by the Administrator of the system. It sets itself to run every time the system is started, and before the user has the opportunity to start a program, it adjusts the permissions of the DLL cache to something much safer.
Alternatively, you can set HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\ProtectionMode=1 and reboot. Paul
Current thread:
- Re: L0pht Security Advisory: Windows NT Paul Ashton (Feb 19)