-
Quote:
Originally posted here by The3ntropy
Whoa, I just found out something really interesting. I was looking through this thread and glanced at ZeroOne's thread and saw the words 'buffer overflow' kind of stick out. I never really thought about using an overflow on a screensaver, but I booted up an old laptop running win98 and there is actually a cap on the ss password to prevent an overflow. In windoze none the less. Well just wanted to through that out to you, in case you are wondering, the prompt will only accept 128 alphanumeric keys and symbols. Nevertheless, it amazed me that windoze would think of placing any type of buffer overflow prevention in their systems. Hell, look at XP, there was a major problem pointed out on the first day of release, and by the close of the first day, there were approximately 4 megabytes of patches to fix a buffer overflow they overlooked. Well, I better stop now, starting to ramble.
I fail to see what's funny about buffer overflows in windows... And even less about limiting password lenght on a screen saver...
Ammo
-
OK lets see I am to believe that I have a person unknown runn amok among 50 users on two floors with a CD. Some questions
1. You assume you will have access to two floors of work stations duringbusiness hours?
2. You assume that any said user of workstation will get up and say sure here is my system
3. Assuming you have access to these two floors do you have the users trust?
4. Assuming you have none of the above you are on the house cleaning crew.
5. You have time to place said CD into computer.
6. 10 % of said 50 computers you run the CD.
7. You still cannot access anything beyond local but continue to conect to the internal network.
8. Your shift ends.
9. IS head arrives next morning.
10. Looks at logs all access is cut off screen saver logout no difference at 6:00 PM
11. Admin sees logs repeated internal attempts to access servers and network during cleaning crew time period.
12. Prints logs calls building super offers logs.
13. Super of Building calls said cleaning crew company.
14. Cleaning crew company owner butt puckers a huge liability.
15. Super calls employment agency I need 10 workers tonight
16. Cleaning crew arrives, owner says due to the recent dot com bust you are all layed off.
17. Toll 6 single mothers with children ages 6 months to teens total kids 14 and mom has no job.
18. Toll 2 recent green card holders with dreams of making life better in the third world 36 lives no food no edu.
19. Toll 1 ex cons at a late age wanting to make things right and their loss not making it to son's and daughters grad from HS and college.
20. Toll You the one with the perfect CD exploit, but hey you learned lots like just cause the puter is on does not mean there is access. So go thank all these people, wil you feed their children, paythe medical costs...hey it was just a 79 cent CD no harm done.
Again even in accessing a local puter on a network it is known anythiing on a puter is a known, add a network and your butt better pucker cause what you give is what you get and I don't have skid marks :D
