Full Disclosure mailing list archives
Re: Outpost Firewall vulnerability, users gaining system rights
From: "H. Wiedemann" <dpr () herr-der-mails de>
Date: Sat, 22 Jul 2006 20:05:05 +0200
And an even more simple method in version 3.51.759.xxxx: "Options - Application - Components - Edit List - Add"This dialog doesn't have a disabled context menu, so just go to the windows\system32 folder, right click on "cmd.exe" and choose "open".
More vulnerabilites to come unless Agnitum separates the service and the GUI parts ;)
-- H. WIEDEMANN _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Outpost Firewall vulnerability, users gaining system rights H. Wiedemann (Jul 21)
- Re: Outpost Firewall vulnerability, users gaining system rights H. Wiedemann (Jul 22)