MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2448.0)
Content-Type: text/plain; charset="iso-8859-1"
Message-ID:  <63D4FBFA885CD2119BA900A0C9E91F0C6087E7@emailii>
Date:         Thu, 3 Jun 1999 13:15:37 -0400
Reply-To: Ed Walsh <walsh@BWATER.COM>
Sender: Windows NT BugTraq Mailing List <NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM>
From: Ed Walsh <walsh@BWATER.COM>
Subject:      Huge Exploit in NT 4.0 SP5 Screensaver with Password Protection E
              nabled.
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

A user pointed out a gaping hole in NT security when using the Economist
screensaver 99.

http://www.economist.com/ <http://www.economist.com/>

With this screensaver installed and the Password Protected box checked, you
can launch IE which comes to the foreground and goes to their home page.
>From there you can browse the network and even open files... excel spread
sheets... word docs... what ever you want. The best part is your screen is
still locked!

I verified this on three machines all NTWKS 4.0 SP5 with IE5.

Cheers

Ed