SmartStuff FoolProof Security Program Restriction Bypass Vulnerability

A vulnerability exists in SmartStuff's FoolProof Security for Windows 9x/Me.

The application, which is designed to restrict the executables which can be run on a (usually public) workstation, can be circumvented by downloading (ie, via FTP) and renaming a copy of the disallowed executable.

As a result, a user can execute programs, such as format, fdisk, etc., which were not intended to be run on the affected system.


 

Privacy Statement
Copyright 2010, SecurityFocus