Message86201
The security descriptors of python binaries (like python.exe,
pythonw.exe, etc) allow any Authenticated Users to modify these
binaries. This may cause a privilege-escalation problem since
administrators may use python binaries when performing administrative
tasks. A normal unprivileged user may turn a python binary into a
trojan and acquire administrator's sids.
Test environment: windows vista, python 2.6 |
|
Date |
User |
Action |
Args |
2009-04-20 16:42:31 | kindloaf | set | recipients:
+ kindloaf |
2009-04-20 16:42:30 | kindloaf | set | messageid: <1240245750.84.0.391245943129.issue5802@psf.upfronthosting.co.za> |
2009-04-20 16:42:29 | kindloaf | link | issue5802 messages |
2009-04-20 16:42:29 | kindloaf | create | |
|