Penetration Testing mailing list archives

Security deficiencies of automated Windows Installations

From: "Christoph Schnidrig" <christoph.schnidrig () csnc ch>
Date: Fri, 26 Nov 2004 14:39:15 +0100

Hi all

During many of our internal penetration tests we've gained high-privileged
access in a short time because the credentials used for unattended Windows
setups are not being protected properly. We have written an article that
points out the problems in this area and offers appropriate countermeasures.

You can download this article at:
http://www.csnc.ch/eng_unattendend_win_install.pdf


Best Regards

Christoph


_____________________________________________________________

Christoph Schnidrig
Compass Security Network Computing AG, CSNC
Glärnischstrasse 7, CH-8640 Rapperswil, Switzerland

Tel: +41 55 214 41 64
Fax: +41 55 214 41 61

christoph.schnidrig () csnc ch
http://www.csnc.ch/

PGP: B3EC C56D FAE9 9C5E E357  1A3E 7EB7 5527 6FB7 693B

Security Review - Penetration Testing - Computer Forensics
_____________________________________________________________

Current thread:

Security deficiencies of automated Windows Installations Christoph Schnidrig (Nov 27)