New Windows Password Encryption Flaw..

Full Version: New Windows Password Encryption Flaw..

GovernmentSecurity.org > General GSO > Exploit & Vulnerability Mailing List Archives

GSecur

Jul 27 2003, 01:13 AM

Is this new? I read about it on slashdot...

http://lasecpc13.epfl.ch/ntcrack/

Basically, it seems that Microsoft has (yet again) screwed up the implementation of their encryption scheme. This makes cracking any hash a matter of seconds. Oops...
--
-----------------------------------------------
Darren Bennett
CISSP, Certified Unix Admin., MCSE, MCSA, MCP +I
Sr. Systems Administrator/Manager
Science Applications International Corporation
Advanced Systems Development and Integration
-----------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.