http://www.techworm.net/2016/01/windows ... ckers.html
Should we care about this?
Hot Potato. A Windows Exploit
Moderator: Moderator Team
Re: Hot Potato. A Windows Exploit
I think this is a UAC issue. ReactOS targets Server 2003 which already lets you run as Session 0 by default and thus everything you're running already has complete and total control over the entire machine.
And even then, this seems really technical. If you're already running malicious code on your machine, it doesn't really matter what methods it uses to break the machine, it's already in there. Windows has several "security vulnerabilities" which are really redundant because malware can directly do what those vulnerabilities would allow it to do in a very convoluted way. There's a "vulnerability" where you can do some funky stuff with windows to trap the mouse cursor in a very convoluted way, or you could just, you know, control the mouse directly.
And even then, this seems really technical. If you're already running malicious code on your machine, it doesn't really matter what methods it uses to break the machine, it's already in there. Windows has several "security vulnerabilities" which are really redundant because malware can directly do what those vulnerabilities would allow it to do in a very convoluted way. There's a "vulnerability" where you can do some funky stuff with windows to trap the mouse cursor in a very convoluted way, or you could just, you know, control the mouse directly.
Re: Hot Potato. A Windows Exploit
Microsoft Security Bulletin MS00-047 discusses a similar problem.
Look for the heading that begins with "What's wrong".
Look for the heading that begins with "What's wrong".
Re: Hot Potato. A Windows Exploit
Not exactly everything. Designated Guest account never gets session 0 and you can use it safely. Albeit most programs for Windows XP will fail on a non-Administrator account, unfortunately. Standard accounts may get session 0.everything you're running already has complete and total control over the entire machine
-uses Ubuntu+GNOME 3 GNU/Linux
-likes Free (as in freedom) and Open Source Detergents
-favors open source of Windows 10 under GPL2
-likes Free (as in freedom) and Open Source Detergents
-favors open source of Windows 10 under GPL2
Who is online
Users browsing this forum: No registered users and 16 guests