From w.wessels@cc.ruu.nl Mon Aug 26 20:03:45 1996 Received: from pdx1.world.net (pdx1.world.net [192.243.32.18]) by suburbia.net (8.7.4/Proff-950810) with ESMTP id UAA13596 for ; Mon, 26 Aug 1996 20:03:27 +1000 From: w.wessels@cc.ruu.nl Received: from relay.cc.ruu.nl (relay.cc.ruu.nl [131.211.16.32]) by pdx1.world.net (8.7.5/8.7.3) with ESMTP id WAA03717 for ; Sun, 25 Aug 1996 22:58:03 -0700 (PDT) Received: (from daemon@localhost) by relay.cc.ruu.nl (8.7.5/8.7.3) id HAA30484; Mon, 26 Aug 1996 07:54:13 +0200 Received: from ka2.cc.ruu.nl(131.211.20.106) by relay via smap (V1.3) id sma022280; Mon Aug 26 07:54:08 1996 Received: from CC_KA2/SpoolDir by ka2.cc.ruu.nl (Mercury 1.21); 26 Aug 96 07:54:09 MET-1 Received: from SpoolDir by CC_KA2 (Mercury 1.21); 26 Aug 96 07:53:56 MET-1 Received: from bcps.cc.ruu.nl by ka2.cc.ruu.nl (Mercury 1.21); 26 Aug 96 07:53:55 MET-1 Message-ID: <32213C0F.E80@cc.ruu.nl> Date: Mon, 26 Aug 1996 07:54:23 +0200 Reply-To: w.wessels@cc.ruu.nl X-Mailer: Mozilla 3.0b5aGold (Win95; I) MIME-Version: 1.0 To: best-of-security@suburbia.net Subject: (no subject) Content-Type: multipart/mixed; boundary="------------72B12106614B" This is a multi-part message in MIME format. --------------72B12106614B Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit unsubscribe best-of-security@suburbia.net --------------72B12106614B Content-Type: message/rfc822 Content-Transfer-Encoding: 7bit Content-Disposition: inline Received: from SpoolDir by CC_KA2 (Mercury 1.21); 25 Aug 96 15:27:43 MET-1 Return-path: Received: from relay.cc.ruu.nl by ka2.cc.ruu.nl (Mercury 1.21); 25 Aug 96 15:27:37 MET-1 Received: (from daemon@localhost) by relay.cc.ruu.nl (8.7.5/8.7.3) id PAA41854 for ; Sun, 25 Aug 1996 15:27:38 +0200 Received: from hydra.cc.ruu.nl(131.211.16.28) by relay via smap (V1.3) id sma034668; Sun Aug 25 15:27:27 1996 Received: (from daemon@localhost) by hydra.cc.ruu.nl (8.7.5/8.7.3) id PAA37214 for ; Sun, 25 Aug 1996 15:27:27 +0200 Received: from pdx1.world.net(192.243.32.18) by hydra via smap (V1.3) id sma037714; Sun Aug 25 15:27:08 1996 Received: from suburbia.net (suburbia.net [203.4.184.1]) by pdx1.world.net (8.7.5/8.7.3) with ESMTP id AAA20958; Sun, 25 Aug 1996 00:25:35 -0700 (PDT) Received: (list@localhost) by suburbia.net (8.7.4/Proff-950810) id RAA29192; Sun, 25 Aug 1996 17:03:26 +1000 Resent-Date: Sun, 25 Aug 1996 17:03:26 +1000 Date: Sun, 25 Aug 1996 00:02:38 -0700 (PDT) From: Chris Royston To: SekrtyXprt@aol.com cc: best-of-security@suburbia.net In-Reply-To: <960825000843_393312675@emout07.mail.aol.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Resent-Message-ID: <"DnyzY3.0.087.zg_7o"@suburbia> Resent-From: best-of-security@suburbia.net X-Mailing-List: archive/latest/254 X-Loop: best-of-security@suburbia.net Precedence: list Resent-Sender: best-of-security-request@suburbia.net Subject: BoS: Gaping Security Hole This was a "feature" of the early beta copies of Windows 95. It allowed a way of killing the screensaver incase of a system lockup. This was fixed in the original "final" version of Windows 95. I guess the workaround is to get a non-beta copy of Windows 95. Chris ----------------------------------------------------------------------------- Chris Royston croyston@netcom.com Go Cowboys!!!!!!!! ----------------------------------------------------------------------------- On Sun, 25 Aug 1996 SekrtyXprt@aol.com wrote: > Problem: > > It has come to my attention that there is a security hole in Windows 95 that > allows any user to bust out of a passworded screen saver. > > Impact: > > Malicious hackers will be able to penetrate the security of computers at > major retailers such as walmart, sears and even best buy and modify/detroy > files. > > Exploit: > > 1. Press and hold the control-alt-delete keys and then release. > 2. Drag the mouse over to the name of the screen saver and click ONCE. > 3. Click on the "End Task" button. (Or you can simple use Alt-E, again, > press and hold "Alt" and "E" and then release.) > > Workaround: > > There is no workaround at this time that I am aware of other than finding a > more secure screen saver or figuring out a way to disable control-alt-delete. > > I plan to send a copy of this to Microsoft on Monday morning so they can fix > it in future versions. > > Salem Chaudez | "640k ought to be enough for anybody." > SekrtyXprt@aol.com | -- Bill Gates > > > --------------72B12106614B--