funsec mailing list archives
Re: Fwd: Third-party application developers and the WMF flaw
From: Col <colweb () gmail com>
Date: Wed, 18 Jan 2006 09:16:59 +0000
On 17/01/06, Florian Weimer <fw () deneb enyo de> wrote:
But this is rather well-documented AFAIK. In an AD tree, trust propagates both ways for some obscure technical reasons. (I'm not a Windows networking guy, don't ask me about details.)
Yeah true, but the point is, he's able to get Enterprise Admin rights in the root domain from a non-privilaged account. Obviously some hidden method for priv-escalation, if he was telling the truth. Col. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Third-party application developers and the WMF flaw Richard M. Smith (Jan 16)
- Message not available
- Fwd: Third-party application developers and the WMF flaw Col (Jan 16)
- Re: Third-party application developers and the WMF flaw TheGesus (Jan 16)
- Re: Fwd: Third-party application developers and the WMF flaw Florian Weimer (Jan 17)
- Re: Fwd: Third-party application developers and the WMF flaw Col (Jan 18)
- Fwd: Third-party application developers and the WMF flaw Col (Jan 16)
- Message not available
- Re: Third-party application developers and the WMF flaw Gadi Evron (Jan 17)
- Infecting OEM Images Larry Seltzer (Jan 19)
- RE: Infecting OEM Images Richard M. Smith (Jan 19)
- Re: Infecting OEM Images Pierre Vandevenne (Jan 19)