Login in Windows Vista Ultimate without and credentials

G

Guest

There is a serious bug found in Windows Vista Ultimate, which allow the user
to login in to Window Vista System without providing any credential. It just
requires the attacker to access the victim system, for the first time. To
gain access to victim system, follow these steps.

1) Open System32 folder of your windows.
2) Copy Cmd.exe, Magnify.exe and paste it in two different locations, for
safety purpose.
3) Rename the cmd.exe to Magnify.exe on the backup location.
4) Copy & paste the renamed cmd.exe to system32 folder, this asks for
replacing the Magnify.exe, just continue with replacing.
5) Now restart the system.
6) After restarting the system, the login screen will come, now select the
utility manager, which is on the below left on the screen.
7) Now check the Magnify check box, to open the Magnify.exe, but now this
will open the cmd.exe.
7) In the command prompt, just type the explorer.exe, this will open the
explorer.exe, and desktop, without login in to the system. The user account
provided for login is the system account, so u can do anything with the
system.
You can also play with the windows registry, services, user account change,
and deletion of user accounts, anything you want.


I don’t understand why Microsoft is failed to look in to simple problems.
This is the simplest way to hack the windows vista, without any hacking
knowledge.
 
J

Jane C

That's assuming that the victim's pc is turned on and logged in. In which
case, the "attacker" already has access. No need for stupid hacks.
 
M

Mike Brannigan

Abhishek Choudhary said:
There is a serious bug found in Windows Vista Ultimate, which allow the
user
to login in to Window Vista System without providing any credential. It
just
requires the attacker to access the victim system, for the first time. To
gain access to victim system, follow these steps.

1) Open System32 folder of your windows.
2) Copy Cmd.exe, Magnify.exe and paste it in two different locations, for
safety purpose.
3) Rename the cmd.exe to Magnify.exe on the backup location.
4) Copy & paste the renamed cmd.exe to system32 folder, this asks for
replacing the Magnify.exe, just continue with replacing.
5) Now restart the system.
6) After restarting the system, the login screen will come, now select the
utility manager, which is on the below left on the screen.
7) Now check the Magnify check box, to open the Magnify.exe, but now this
will open the cmd.exe.
7) In the command prompt, just type the explorer.exe, this will open the
explorer.exe, and desktop, without login in to the system. The user
account
provided for login is the system account, so u can do anything with the
system.
You can also play with the windows registry, services, user account
change,
and deletion of user accounts, anything you want.


I don’t understand why Microsoft is failed to look in to simple problems.
This is the simplest way to hack the windows vista, without any hacking
knowledge.
Click to expand...

This is not a hack - to perform the steps you outline below you have to
already have physical access to the PC and be able to logon locally or
remotely with sufficient credentials to perform all the steps you outline
replacing files in system32 etc.. In which case you have already
compromised the system
This is not a hack as the compromise has to already be done prior to your
trivial example of throwing a command prompt under system context which has
been a know ability by many other methods on Windows NT/2000/XP/2003 systems
since day one.

This is a none issue.[/QUOTE]
 
G

Guest

I am unsure where to post this message, so I will try here first. A virus
destroyed my XP operating system, so I bought Vista Home, since I am a
student on a budget. However, without even using it, the system fails to
activate because my product key is in use. How is this possible, if I
purchased it and was the only person to activate using it? Would this affect
my computer or any future networks?
 
R

Richard G. Harper [MVP Shell/User]

If you let someone have physical access to your computer, they already own
it. The rest is window dressing.
 
R

Richard G. Harper [MVP Shell/User]

This is both the wrong place and the wrong way to post a question. When you
post in an existing discussion folks assume your post has something to do
with the existing discussion, which yours does not. And they assume you're
replying to/adding to an ongoing discussion, which you aren't.

Anyway, call the telephone activation center. Since we don't know where you
got your copy of Vista it may or may not be legitimate. The telephone
activation center will help you sort it all out.
 
P

Puppy Breath

LOL. During the beta I'd see reports of supposed security flaws where the
first required step was to log into the system Administrator account (not
even a local administrator account). I mean, - duh - if you're logged in as
system Administrator, you can do anything you want ayway.
 
D

Dustin Harper

A better hack: Log in as administrator. (requirement for hack below)

There you go! :) You have admin access!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

login in Windows Vista Without Any User Credentials 2
login in Windows Vista without any credential 8
Windows Vista Welcome Screen 4
Windows Vista Ultimate forgets user settings on login to Domain 2
How to Reset / Recover Forgotten Windows Password? 0
cached credentials for mapped drives and elevation 6
Remote Login on Windows Vista Machine 1
Windows vista login selection 1

Top