eliminates a security vulnerability in Windows NT that could enable a user to execute arbitratrary code.
The security descriptor that secures the Remote Access Connection Manager, RASMAN.EXE, contains an inappropriate ACE in its DACL and would allow an unprivileged user to levy requests on it via the Service Control Manager. Among the actions that could be requested is to change the location and name of the executable code for the service. By doing so, a malicious user could substitute arbitrary code for the legitimate service, which then would run in a System Context.
A malicious user could only exploit this vulnerability if he or she had a valid userid and password on the target machine. If the machine allowed users to log on from the network, the vulnerability could be remotely exploited. In addition, the arbitrary code could, under certain conditions, reside on a remote machine. This patch resets the permissions to the appropriate value and eliminates the vulnerability, and should be run against any machine that allows unprivileged users to perform either interactive or network logons under any account.
Microsoft Windows NT and quot;RASMAN Security Descriptor and quot; Vulnerability Patch runs on
Windows NT/2000/Windows 10/11
and is available under the
Freeware
license
— the installer is 58 KB.
We’ve catalogued it under
System.
✓
Verified clean. Every Microsoft Windows NT and quot;RASMAN Security Descriptor and quot; Vulnerability Patch build on SoftLookup is scanned for viruses, spyware, adware, trojans and backdoors. We re-test on every update.
Help fellow users decide. Share your experience with Microsoft Windows NT and quot;RASMAN Security Descriptor and quot; Vulnerability Patch.