TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems! ---------------------------------------------------------------------------- Hi, > > Excuse me if the answer if obvious: > > As I understand it the unicode vulnerability allows the attacker to run > commands under the IUSR_Machine context. > My question is this, given that Nimda attempts to add the user Guest to the > local administrators group it must also perform some sort of Local > priviledge escalation as this operation would not be possible by the > IUSR_machine account. > > Does this make sense or am I missing something. > > Regards, > > Ross. -- Ross Bushby Network Security Consultant Real Solutions. Tel:0208 3914080 Units B&C, Oakcroft Business Centre, Fax:0208 391 4081 Oakcroft Rd, Chessington Web:http://www.cardinal.co.uk Surrey, KT9 1RH E-mail: [EMAIL PROTECTED]
