| New User, Welcome! Login |
Re: ZoneAlarm Security Circumvention
| From: |
Ansgar Wiechers <bugtraq planetcobalt net> |
| To: |
bugtraq securityfocus com |
| Cc: |
|
| Subject: |
Re: ZoneAlarm Security Circumvention |
| Date: |
Mon - Mar 08, 2010 01:17 PM |
On 2010-03-08 Andrew Barkley wrote:
> The following illustrates how one can easily disable ZoneAlarm's
> security for whatever malevolent purposes. This "vector" so to speak,
> is merely "abusing" a particular branch of the Windows registry, by
> registering this security service as disabled. When "exploiting" this
> "vector" (administrative privileges are assumed
Anything starting with "a user with administrative privileges can ..."
is neither a vulnerability nor a design flaw. Administrators can by
design do anything they want on the system. Period.
Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
