Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: [Full-disclosure] Flaw in Microsoft Domain Account CachingAllows Local Workstation Admins to Temporarily Escalate Privilegesand Login as Cached Domain Admin Accounts (2010-M$-002)
Dec 13 2010 07:16PM
Ansgar Wiechers (bugtraq planetcobalt net)
On 2010-12-13 Andrea Lee wrote:
> A local admin is an admin on one system. The domain admin is an admin
> on all systems in the domain, including mission critical Windows
> servers. With temporary domain admin privs, the local admin could log
> into the AD and change permissions / passwords for anot...
[ more ]
Copyright 2010, SecurityFocus