|
|
|
|
| |
A new method have been found of easily obtaining the Network Username and Password on Windows '95 machines, using the fact that the network password is stored in memory, and is easily obtained by calling a certain Interrupt.
This bug has been reported to work on Windows 3.11 (wfw) and Windows '95 machines. Windows '98 and Windows NT seem safe at the moment |
| |
Credit:
Microsoft has not yet responded to this problem. The following lines:
mov ax,1184h
mov bc,0dh
xor cx,cx
int 2fh
seem to disable the password caching "feature".
For the original report, see the bug traq archive:
http://www.geek-girl.com/bugtraq/1998_4/0150.html
|
| |
In a report to bugtraq (bugtraw@netspace.org) a tiny application was presented. This application calls software interrupt 2fh with function 11h, sub function 84h. A call to this function, returns a buffer containing the password in clear text(!)
The function is used by net.exe (the application responsible for network connection management in WFW and Windows '95) in order to check the validity of the old password when changing to a new one.
The program, nick named "Cache Pig" was attached to the report.
|
|
|
|
|
|
|
|
|
|
