Exploit Microsoft Zero Administration Kit (ZAK) 1.0 / Office97 - Backdoor Access

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
19144
Проверка EDB
  1. Пройдено
Автор
SATU LAKSELA
Тип уязвимости
LOCAL
Платформа
WINDOWS
CVE
cve-1999-1431
Дата публикации
1999-01-07
Код:
source: https://www.securityfocus.com/bid/181/info

Zero Administration Kit (ZAK) was designed to allow administrators to (among other things) lock down the NT environment and restrict the user's access to certain applications and system functions.

In an instance where the end-user is not allowed to execute Windows Explorer and other "forbidden applications" (ie Quake), the following workaround was noted:

Open Word or Excel.

Select File:Open. Right click on the background of the File:Open window. A prompt will appear that will allow the user to select "Browse". Browse will open Windows Explorer.

Assuming the user has write access to the temp directory, create a special directory in temp and copy in the executables of the forbidden applications to this directory. These applications can now be executed and will circumvent the policies established by ZAK.
 
Источник
www.exploit-db.com

Похожие темы