[Full-disclosure] Microsoft Windows keybd_event validation vulnerability
Jerome Athias
jerome.athias at free.fr
Tue Sep 6 12:20:37 BST 2005
It was posted by Andres Tarasco to full-disclosure allready
Additionaly:
1) french version of the advisory:
http://www.athias.fr/alertes-bulletins-securite/20050905_Microsoft.Windows_Validation.keybd_event.html
2) I use to use this trick to obtain SYSTEM privileges with just ADMIN
privileges:
AT 20:00 /INTERACTIVE cmd.exe
Cheers,
/JA
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5213 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050906/629ae58f/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.