Vulnerability Development mailing list archives

Re: What about NT's AUTORUN Vulnerability!

From: "Loschiavo, Dave" <DLoschiavo () FRCC CC CA US>
Date: Thu, 15 Feb 2001 21:47:30 -0800

Sorry, should have been more specific. I've only tested this on NT.

-----Original Message-----
From: Samuel festus Stover
To: VULN-DEV () SECURITYFOCUS COM
Sent: 2/14/01 5:30 AM
Subject: Re: What about NT's AUTORUN Vulnerability!

Is this registry entry for WinNT or Win2k?  I checked my Win2k box and
didn't have the explorer key in policies.

S. festus

Blame is for God and small children.
Dega/"Papillon"

FYI.... The best way I've found to secure yourself from this is to set:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer

NoDriveTypeAutoRun = 7f

This turns autorun off for ALL drive types.




________________________________________________________________________
___
Visit http://www.visto.com/info, your free web-based communications
center.
Visto.com. Life on the Dot.

Current thread:

Re: What about NT's AUTORUN Vulnerability! Nelson Brito (Feb 10)
- <Possible follow-ups>
- What about NT's AUTORUN Vulnerability! Nelson Brito (Feb 10)
- Re: What about NT's AUTORUN Vulnerability! O'Kelly, Aidan (Feb 13)
  - Re: What about NT's AUTORUN Vulnerability! Shoten (Feb 13)
- Re: What about NT's AUTORUN Vulnerability! Loschiavo, Dave (Feb 13)
- Re: What about NT's AUTORUN Vulnerability! Samuel festus Stover (Feb 14)
  - Re: What about NT's AUTORUN Vulnerability! Jesper M. Johansson (Feb 16)
- Re: What about NT's AUTORUN Vulnerability! Loschiavo, Dave (Feb 16)
- Re: What about NT's AUTORUN Vulnerability! Ian Kayne (Feb 19)