Full Disclosure mailing list archives

Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access

From: Shawn McMahon <smcmahon () eiv com>
Date: Sat, 18 Sep 2004 10:07:17 -0400

On Fri, Sep 17, 2004 at 03:08:34PM -0500, Michael Wilson, Contractor said:


It is most likely the Vendor Install Customization that has caused this
issue, as true enough, most vendor installs force you to pick an
administrator password before using the system.  If the account is hidden,
then it is definitely IBM's doing as I have never seen a Windows install
where the administrator account could not be seen under the accounts tab.


Averatec laptop installs of XP Home have it hidden; you have to boot in
Safe Mode to add a password.

The documentation that specifies this is a Microsoft product, so I
suspect it's the same with other installs of Home, but I have only left
the packaged install of XP Home on one machine ever, so I am not at all
sure of this.


-- 
Shawn McMahon      | Let's set the record straight. There is no argument
EIV Consulting     | over the choice between peace and war, but there is
UNIX and Linux     | only one guaranteed way you can have peace - and you
http://www.eiv.com | can have it in the next second - surrender. - Reagan

Attachment: _bin
Description:

Current thread:

Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Scheidell (Sep 15)
- Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Colin . Scott (Sep 16)
  - RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access pingywon MCSE (Sep 16)
- Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Harrison Gladden (Sep 16)
- Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Chris Norton (Sep 17)
  - RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Wilson, Contractor (Sep 17)
    - Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Shawn McMahon (Sep 18)
    - Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Larry Mitchell (Sep 20)
  - RE: Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access pingywon MCSE (Sep 17)
- <Possible follow-ups>
- RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Scheidell (Sep 17)
- RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Scheidell (Sep 17)
  - RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Wilson, Contractor (Sep 17)
    - RE: RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Phillip R. Paradis (Sep 17)
    - Re: RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Valdis . Kletnieks (Sep 21)
  - RE: RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Phillip R. Paradis (Sep 17)
  - Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Chris Norton (Sep 18)
- RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access Michael Scheidell (Sep 18)

(Thread continues...)