Vulnerability Development mailing list archives
Re: win2k, XP deletes somename_files when somename.html deleted
From: "Albert N. Umerov" <bert_umerov () bluebottle com>
Date: Mon, 07 Feb 2005 22:46:45 +0300
Hello,
instead "copy" create for "foobar_files" junction (hard link) to "c:\windows\system32" (for example)create a file named foobar.html create a folder named foobar_files copy a bunch of files (of any type) inside foobar_files
delete foobar.html
If user who want delete "foobar.html" have admin rights... Simple bomb :))
don't use Explorer to delete files, restrict policy to use another file manager to delete files (for example, Far) :)))Even if there's no vuln as such, it's something to be aware of.
-- Best regards, Albert N. Umerov
Current thread:
- win2k, XP deletes somename_files when somename.html deleted q q (Feb 07)
- Re: win2k, XP deletes somename_files when somename.html deleted Albert N. Umerov (Feb 07)
- <Possible follow-ups>
- RE: win2k, XP deletes somename_files when somename.html deleted Michael Wojcik (Feb 07)