Phase:The "AEDebug" registry key is installed with insecure permissions, which allows local users to modify the key to specify a Trojan Horse debugger which is automatically executed on a system crash.
ReferencesNTBUGTRAQ:Monday, June 22, 1998 Yet another "get yourself admin rights exploit": | URL:http://marc.theaimsgroup.com/?l=ntbugtraq&m=90222453431604&w=2 | MSKB:Q103861 | URL:http://support.microsoft.com/support/kb/articles/q103/8/61.asp | MS:MS00-008 |
Votes:Proposed (Wednesday, September 12, 2001)
Comments: ACCEPT(3) Foat, Cole, Wall | MODIFY(1) Frech
F7: Frech> XF:nt-registry-permissions(4111)