Bardon Data Systems WinU Backdoor Password Vulnerability

Bardon Data Systems WinU is a full Windows 95/98/NT user interface replacement with added security capabilities.

The feature 'emergency password' allows the administrator to gain full access to all configuration settings of the WinU interface. A number of valid passwords are publicly available which can be used by a malicious user who does not possess administrative privileges. The user could gain full administrative control over the WinU application through the user of these passwords.


 

Privacy Statement
Copyright 2010, SecurityFocus