avertlabs.com — Recently a trojan was seen to take advantage of EFS to protect itself and execute with administrative privileges. The trojan creates an administrator login account with a random name and random password. Using this login key pair it then encrypts the downloader component that it drops. It then creates a service that points to the encrypted file.
Sep 7, 2006 View in Crawl 4
dacheetahSep 7, 2006
"sudo Make me a sandwich."lmfao.That line made my day...Hands up if you would make "root" a sandwich.
fishsodaSep 7, 2006
How is he cheating the system? It seems I may be missing some comments here.
fishsodaSep 7, 2006
<a class="user" href="http://xkcd.com/c149.html">http://xkcd.com/c149.html</a>This is where "make me a sandwich" came from. You can even order a t-shirt!
jeet404Sep 7, 2006
I can just imagine reading "now comes with Administrator privileges!"
jcateSep 7, 2006
here is the link that came out a few weeks ago...<a class="user" href="http://www.projectstreamer.com/users/r0t0r00t3r/xp_priv_esc-1/xp_priv_esc.html">http://www.projectstreamer.com/users/r0t0r00t3r/xp_priv_esc-1/xp_priv_esc.html</a>
Closed AccountSep 7, 2006
@ jcateI also commented on the digg with that video. You need administrator privileges to do what was demonstrated. Try it yourself with a limited account and the guest account.