But Windows XP with sp2 enhance the security configuration and block
these checking way. So we can not do local check on Windows XP sp2
except ask customers to do a lot of complex configuration.
Well, with the enhanced security configuration and firewall enabled, the
vulnerability is no longer "remotely exploitable", is it?
If you want to check for local vulnerabilities, you'll to run something
client-side. There's at least a half-dozen ways to do this in a domain
model (eg: GPO or logon scripts) -- but in a standalone environment,
you'll need an agent of some type.
Cheers,
Michael Holstein CISSP GCIA
Cleveland State University
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
