Forums  Register  Login  My Profile  Inbox  Address Book  My Subscription  My Forums 

Member List  Search  FAQ  Ticket List  Log Out

 

RE: GDI JPEG Exploit

  		Logged in as: Guest
Users viewing this topic: none
  Printable Version
All Forums >> [Networking & Security] >> GFI LANguard >> RE: GDI JPEG Exploit Page: <<   < prev  1 2 [3]
Login
Message << Older Topic   Newer Topic >>
RE: GDI JPEG Exploit - 26.Oct.2004 9:10:00 PM   
DanielSchell

 

Posts: 179
Joined: 16.Oct.2003
From: Adelaide, Australia
Status: offline 		Thats a bit of a multimillion dollar question at the moment [Confused] . You can edit the WMI query 'where drive = c or d' however I beleive WMI still checks every file on every avaliable drive letter to see if it on the c or d drive.

If anyone is a WMI guru and knows the answer please help us out [Smile]

The Microsoft sample code for finding an MP3 on a computer (A similar query/code is used in my media scan script) uses the same syntax which would also return all drives.

(in reply to Paladium)
Post #: 31
RE: GDI JPEG Exploit - 27.Oct.2004 8:23:00 AM   
DanielSchell

 

Posts: 179
Joined: 16.Oct.2003
From: Adelaide, Australia
Status: offline 		Some extra information I found re: wmi and access denied errors on XP.

quote:
You got it right so far. I had the same issues a while back. XP by default sets a local security policy called Network security: Sharing and security model for local accounts to Guest only. This needs to be changed to Classic

Here, I got a reg add for you, to save you some time. Backup your REG 1st....as allways ;-). Copy below to new text file and rename ext to .reg. Whack it and import. (but I think you know this stuff already).

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SeCEdit\Reg Values\MACHINE/System/CurrentControlSet/Control/Lsa/ForceGuest]
"ValueType"=dword:00000004
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"forceguest"=dword:00000000

(in reply to Paladium)
Post #: 32
RE: GDI JPEG Exploit - 27.Oct.2004 10:32:00 AM   
xnih

 

Posts: 2465
Joined: 30.May2001
From: Idaho
Status: offline 		There might be something here for you:

http://www.microsoft.com/technet/scriptcenter/resources/qanda/oct04/hey1013.mspx

quote:
Just for the heck of it, hereÆs another variation. By default, the Win32_LogicalDisk class looks at all disk drives on your computer, including floppy drives, removable Zip drives, etc. If youÆd like to get back free space information on just your hard drives, modify your WQL Query so that it selects all drives with a DriveType of 3 (which, in the world of WMI, represents a hard drive). In other words:

strComputer = "."
Set objWMIService = GetObject("winmgmts:" _
& "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2")
Set colDisks = objWMIService.ExecQuery _
("Select * from Win32_LogicalDisk Where DriveType = 3")
For Each objDisk in colDisks
intFreeSpace = objDisk.FreeSpace
intTotalSpace = objDisk.Size
pctFreeSpace = intFreeSpace / intTotalSpace
Wscript.Echo objDisk.DeviceID, FormatPercent(pctFreeSpace)
Next

that may work.

eric

(in reply to Paladium)
Post #: 33
RE: GDI JPEG Exploit - 29.Oct.2004 1:28:00 AM   
DanielSchell

 

Posts: 179
Joined: 16.Oct.2003
From: Adelaide, Australia
Status: offline 		Success [Smile] The version below will only scan drives of type "Local Disk".

http://www.gfiap.com/apfiles/lgnss5_gdipluscheck14d.zip

(in reply to Paladium)
Post #: 34
Page:   <<   < prev  1 2 [3]
All Forums >> [Networking & Security] >> GFI LANguard >> RE: GDI JPEG Exploit Page: <<   < prev  1 2 [3]
Jump to:





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts