Spyware Doctor
Spyware Doctor with AntiVirus
PC Tools AntiVirus
PC Tools Internet Security
PC Tools Firewall Plus
ThreatFire
Spam Monitor
Registry Mechanic
Desktop Maestro
File Recover
Privacy Guardian
Spyware Doctor Enterprise
Help me choose
RASMAN Security Descriptor Vulnerability
A vulnerability exists that could enable a user to execute arbitrary code on a Windows NT machine under certain conditions, due to an inappropriate ACE in the Remote Access Connection Manager DACL.
Issue
The security descriptor that secures the Remote Access Connection Manager, RASMAN.EXE, contains an inappropriate ACE in its DACL and would allow an unprivileged user to levy requests on it via the Service Control Manager. Among the actions that could be requested is to change the location and name of the executable code for the service. By doing so, a malicious user could substitute arbitrary code for the legitimate service, which then would run in a System Context.
A malicious user could only exploit this vulnerability if he or she had a valid userid and password on the target machine. If the machine allowed users to log on from the network, the vulnerability could be remotely exploited. In addition, the arbitrary code could, under certain conditions, reside on a remote machine. A tool is available to reset the permissions to the appropriate value and eliminate the vulnerability, and should be run against any machine that allows unprivileged users to perform either interactive or network logons under any account.
Affected Products
- Windows NT Server, Enterprise, Terminal Server and Workstation 4.0
Download
Further Details
Source: Microsoft Corporation
Reference: Microsoft Corporation
Updated: September 30, 1999
>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<
