hi what's the effect of this 'vulnerability' ? it seems that messages can't be carried from a USER desktop to a prerogative desktop .
Regards, c.y. wang security analysis engineer Shanda Interactive Entertainment Co. Ltd, Shanghai, China. Phone: +86-21-50504740-5046 Email: [EMAIL PROTECTED] ----- Original Message ----- From: "Jerome Athias" <[EMAIL PROTECTED]> To: "Frederic Charpentier" <[EMAIL PROTECTED]> Cc: <bugtraq@securityfocus.com>; <full-disclosure@lists.grok.org.uk> Sent: Tuesday, September 06, 2005 7:20 PM Subject: Re: [Full-disclosure] Microsoft Windows keybd_event validation vulnerability > It was posted by Andres Tarasco to full-disclosure allready > > Additionaly: > > 1) french version of the advisory: > > http://www.athias.fr/alertes-bulletins-securite/20050905_Microsoft.Windows_Validation.keybd_event.html > > 2) I use to use this trick to obtain SYSTEM privileges with just ADMIN > privileges: > > AT 20:00 /INTERACTIVE cmd.exe > > Cheers, > /JA >
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/