Microsoft Windows 2000 Group Policy Evasion Vulnerability

Windows 2000 allows for administrators to configure various user options with a feature known as Group Policy. The Group Policy files are stored readable to all users.

A vulnerability exists in that the individual policy file permissions are configured allowing users to open them in exclusive-read mode. When files are opened in exclusive-read mode, they are locked and cannot be read by other users on the system.

If the Group Policy files are locked, the policy settings will not be applied to users logging into the network. Additionally, systems logged in re-read the policy files every 90 minutes. Exploitation of this vulnerability may also prevent new policy settings from being applied.


Privacy Statement
Copyright 2010, SecurityFocus