Microsoft Windows 2000 Group Policy Bypass Vulnerability
BID:12641
Info
Microsoft Windows 2000 Group Policy Bypass Vulnerability
| Bugtraq ID: | 12641 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 23 2005 12:00AM |
| Updated: | Feb 23 2005 12:00AM |
| Credit: | This issue was reported by "Discini, Sonny" <[email protected]>. |
| Vulnerable: |
Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server |
| Not Vulnerable: | |
Discussion
Microsoft Windows 2000 Group Policy Bypass Vulnerability
A vulnerability exists in the way Microsoft Windows 2000 group policies are enforced. It is reported that drive access restrictions may be bypassed using applications and services that are not listed as being restricted in the drive access group policy.
This vulnerability may be leveraged using Microsoft Office XP SP3 applications. Additionally it is reported that Windows functionality provided to allow browsing of Flash memory drives may also be applied to leverage this issue.
A vulnerability exists in the way Microsoft Windows 2000 group policies are enforced. It is reported that drive access restrictions may be bypassed using applications and services that are not listed as being restricted in the drive access group policy.
This vulnerability may be leveraged using Microsoft Office XP SP3 applications. Additionally it is reported that Windows functionality provided to allow browsing of Flash memory drives may also be applied to leverage this issue.
Exploit / POC
Microsoft Windows 2000 Group Policy Bypass Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
Microsoft Windows 2000 Group Policy Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Microsoft Windows 2000 Group Policy Bypass Vulnerability
References:
References:
- OFF2000: Office Programs Can Browse Restricted Drives (Microsoft)
- Office 10 applications & flashdrives can be used to browse restricted drives ("Discini, Sonny"