{"id":876,"date":"2009-03-08T17:19:01","date_gmt":"2009-03-08T16:19:01","guid":{"rendered":"http:\/\/www.mitternachtshacking.de\/blog\/876-windows-hacking-frage-fur-spezialisten"},"modified":"2012-06-07T18:39:38","modified_gmt":"2012-06-07T17:39:38","slug":"windows-hacking-frage-fur-spezialisten","status":"publish","type":"post","link":"https:\/\/www.mitternachtshacking.de\/blog\/876-windows-hacking-frage-fur-spezialisten","title":{"rendered":"Windows Hacking Frage f\u00fcr Spezialisten"},"content":{"rendered":"<p>Windows 2000 SP4, aktuelle Service Packs. Nessus (aktuelle Version 3.2.1.1, aktueller Commercial Feed) hat mir folgendes ausgespuckt:<\/p>\n<p><strong>SMB Registry : Autologon<\/strong><\/p>\n<p><em>Synopsis :<\/em><\/p>\n<p>Anyone can logon to the remote system.<\/p>\n<p><em>Description :<\/em><\/p>\n<p>This script determines whether the autologon feature is enabled. This feature allows an intruder to log into the remote host as DefaultUserName with the password DefaultPassword.<\/p>\n<p><em>Solution :<\/em><\/p>\n<p>Delete the keys AutoAdminLogon and DefaultPassword under<br \/>\nHKLM\\SOFTWARE\\Microsoft\\Window NT\\CurrentVersion\\Winlogon<\/p>\n<p><em>Risk factor :<\/em><\/p>\n<p>High \/ CVSS Base Score : 7.2<br \/>\n(CVSS2#AV:L\/AC:L\/Au:N\/C:C\/I:C\/A:C)<\/p>\n<p>Hat zuf\u00e4llig einer der Mitleser eine Idee, wie man das aus der Ferne ausnutzen kann? Der Server steht im gleichen LAN in dem ich mich auch befinde. Es gibt keine Firewall dazwischen. Der Zugriff auf Shares ist prinzipiell m\u00f6glich, scheitert aber an Rechten.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Windows 2000 SP4, aktuelle Service Packs. Nessus (aktuelle Version 3.2.1.1, aktueller Commercial Feed) hat mir folgendes ausgespuckt: SMB Registry : Autologon Synopsis : Anyone can logon to the remote system. Description : This script determines whether the autologon feature is enabled. This feature allows an intruder to log into the remote host as DefaultUserName with [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[8,6],"tags":[],"_links":{"self":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts\/876"}],"collection":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/comments?post=876"}],"version-history":[{"count":0,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts\/876\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/media?parent=876"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/categories?post=876"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/tags?post=876"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}