Win2000 landing vulnerability final solution

zhaozj2021-02-08  253

NSFOCUS's security groups have been released in-depth studies yesterday. It cannot completely solve problems. Because there is a high-level option in the landing interface, click on the left mouse button, and the dial-up network will appear. If you press The Ctrl Shift key, the deleted input method is back, move the cursor between the user and the password box and the status bar will appear, and the input method will be expanded to send the gods! It seems that there is no way to change Microsoft's documents does not affect the function. Well, since we have to pick up the surgery to microsoft surgery.

The suffix of the input method file of the Windows system is * .IME, in the Windows2000 series is placed in the System32 folder in the itself installation directory (default is C: / Winnt), there is a total of six files corresponding to:

Winabc.IME is a smart ABC input method, and Pintlgnt.IMe is Microsoft Pinyin input method, WinGB.IME is the internal code input method, WinPy.IME is a full spelling method, Winsp.IME is a double spelling method, Winzm.IMe is Zheng Zheng Code input method. You can only leave Microsoft Pinyin input method and intelligent ABC input method, and the rest of the input method must be deleted all! what? Will you only fully? Use Microsoft Pinyin, almost. Will you just Zheng? Go home and practice!

Another way is to delete the help file of the input method. After searching for Windows2000, there are near hundred help files, where the input method corresponds to the Help folder in the installation directory: Winime.chm is the input method operation guide, must delete Winsp.chm is a double spelling method, must be deleted, winzm.chm is Zheng code input method, must delete, winpy.chm is a full spelling method, must delete, and one is System32 / IME / PINTLGNT / Pintlgnt.chm, this is a Microsoft Pinyin input method, which can be deleted.

Finally, everyone should be vigilant, this can be an attack method, as long as you can upload a few IME and the corresponding several * .chm files to break through the authority settings in the System32 and Help folders, these files are very The small floppy disk is enough, this problem has not been solved now! I hope that Microsoft can provide a solution from the system itself as soon as possible.

转载请注明原文地址:https://www.9cbs.com/read-1330.html

New Post(0)