Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Microsoft Roaming Profile Resource Quota Bypass Weakness

Dec 12, 2003 4:52AM PST

Proquota has been reported prone to a weakness that may be exploited by a local user to bypass profile storage limits supposedly enforced by the proquota application. It has been reported that an attacker who has interactive access to a system, may make the proquota application behave in an unstable manner by having an open unsaved notepad session active when a "Log Off" procedure is invoked from the start menu.

Once the proquota application has failed, it has been reported that the attacker may proceed without any resource limits being enforced on the size of the current profile.

vulnerable Microsoft Windows 2000 Advanced Server SP4
Microsoft Windows 2000 Advanced Server SP3
Microsoft Windows 2000 Advanced Server SP2
Microsoft Windows 2000 Advanced Server SP1
Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Windows 2000 Datacenter Server SP3
Microsoft Windows 2000 Datacenter Server SP2
Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional SP4
Microsoft Windows 2000 Professional SP3
Microsoft Windows 2000 Professional SP2
Microsoft Windows 2000 Professional SP1
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server SP4
Microsoft Windows 2000 Server SP3
Microsoft Windows 2000 Server SP2
Microsoft Windows 2000 Server SP1
Microsoft Windows 2000 Server
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Microsoft Windows XP Media Center Edition
Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional

http://www.securityfocus.com/bid/9186/info/


--
Donna
Online Security Tools

Discussion is locked