[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability
From: Spiro Trikaliotis <trik-news@xxxxxx>
Date: Wed, 24 Aug 2005 20:17:07 +0200

Hello,

* On Wed, Aug 24, 2005 at 11:01:11AM +0400 Igor Franchuk wrote:

> DESCRIPTION
> 
> Microsoft Registry Editor for 2K and XP (Regedt32.exe) has a nice design flow
> that is naturally allows to hide registry information from viewing and
> editing even from users with administrative access. (really handful, thanks 
> guys)

this somehow reminds me of

  http://www.sysinternals.com/Information/TipsAndTrivia.html#HiddenKeys

Of course, I am well aware that these both are different.

Anyway, I'm not sure if the one or the other can be called a "security
bug".

Best regards,
   Spiro.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability
  - From: Igor Franchuk

Prev by Date: [Full-disclosure] FW: Dumador-Varianten gesucht / looking for variants of Dumador
Next by Date: [Full-disclosure] Re: LeapFTP .lsq Buffer Overflow Vulnerability
Previous by thread: Re: [Full-disclosure] Miscrosoft Registry Editor 5.1/XP/2K long string key vulnerability
Next by thread: [Full-disclosure] Secunia Research: HAURI Anti-Virus ACE Archive Handling Buffer Overflow
Index(es):
- Date
- Thread