DATE:  
COMMAND                                            SOURCE: 
                                                   AUTHOR: 
  exe control


SYSTEMS AFFECTED

  Win NT 3.5?, 3.51?, 4.0

  

PROBLEM


    Executables renamed as .xxx  files run as executable  from command

    line. Executables can be renamed  with any extension and run  from

    the  command  prompt  or  batch  file. Subverts filtering/download

    control by filename extension.



    Also  executables  without  a  filename  extension  can be started

    from the command prompt or batch  file, as NT will try to  run the

    file as .COM, .EXE, or .BAT in that order.



    This could be potential trojan.  You can try by yourself:



        Copy notepad.exe to notepad.doc, open command window, type

        'start notepad.doc'.





EXPLOIT

  

SOLUTION


    MS should fix this problem in some next release.