Security deficiencies of automated Windows Installations

From: Christoph Schnidrig (christoph.schnidrig@csnc.ch)
Date: Fri Nov 26 2004 - 08:39:15 EST

• Next message: Evans, Arian: "RE: Crashing services with NMAP and/or SuperScan ?"
• Previous message: Ben Nagy: "RE: Retina scans caused broadcast storms"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi all

During many of our internal penetration tests we've gained high-privileged
access in a short time because the credentials used for unattended Windows
setups are not being protected properly. We have written an article that
points out the problems in this area and offers appropriate countermeasures.

You can download this article at:
http://www.csnc.ch/eng_unattendend_win_install.pdf

Best Regards

Christoph

_____________________________________________________________

Christoph Schnidrig
Compass Security Network Computing AG, CSNC
Glärnischstrasse 7, CH-8640 Rapperswil, Switzerland

Tel: +41 55 214 41 64
Fax: +41 55 214 41 61

christoph.schnidrig@csnc.ch
http://www.csnc.ch/

PGP: B3EC C56D FAE9 9C5E E357 1A3E 7EB7 5527 6FB7 693B

Security Review - Penetration Testing - Computer Forensics
_____________________________________________________________

• Next message: Evans, Arian: "RE: Crashing services with NMAP and/or SuperScan ?"
• Previous message: Ben Nagy: "RE: Retina scans caused broadcast storms"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:09 EDT