- Feature Articles
- CodeSOD
- Error'd
-
Forums
-
Other Articles
- Random Article
- Alex's Soapbox
- Announcements
- Best of…
- Best of Email
- Best of the Sidebar
- Bring Your Own Code
- Coded Smorgasbord
- Mandatory Fun Day
- Off Topic
- Representative Line
- News Roundup
- Editor's Soapbox
- Software on the Rocks
- Souvenir Potpourri
- Sponsor Post
- Tales from the Interview
- The Daily WTF: Live
- Virtudyne
Admin
SMS packages could be deployed to a user, a group, or the entire network, and for better or worse, would run without any interaction from the user.
If anyone is curious as to why this is, the answer is "because SMS is designed to install software using an account with administrative access to the target system, as opposed to the currently logged-on user".
Allowing the user to see a window that belongs to the SMS user context opens up the system to a privilege-escalation exploit. SMS will allow you to override this setting, but it's not recommended. I'm sure there are ways to mitigate the vulnerability, but MS hasn't implemented them.
There is a related class of exploit called a "shatter attack" that takes advantage of a quirk of Windows' design. If there is no user logged on to a machine (on console, not RDP), and (for example) an SMS task runs which has that "allow interaction with desktop" option selected, Windows will create a "Window Station" for any of the GUI-type stuff to take place in. As of XP/2003 at least, if those GUI elements stuck around (an unexpected dialogue waiting for OK to be clicked, for example) and a real user logged on on console, they would be dumped into that administrative-account-context Window Station rather than having a new one created for them. So now that user has admin rights on all of the workstations at least. If the SMS admins are using the out-of-the-box defaults from SMS 2.0 and 2003, the user on the workstation is acting as a domain admin.
Admin
Admin
Admin
That was a middle-click. Or the in-between-left-and-middle click, depending how wide your browser window is... but no where near the right.
Admin
No,no,no, those are all wrong clicks.
The right click is the one you hear just before the roof falls, rocks fall, everyone dies, and no one gets into the tomb.
Admin
Ha! Clip from TFA below. I went through that last week during layoff#2_09. Coffee sucks again, workers are back to adequate.
He didn't want the job to be over, he wanted to stay! Suddenly he gained an appreciation for the posters of abstract art in the conference rooms; they were no longer bland and generic, they leapt off the slightly yellowed glossy poster print, oozing with emotion. He became drunk on the intoxicating bouquet of the burnt coffee. His co-workers weren't "adequate," they were shining beacons of knowledge; John, the freaking idiot who'd sent the wrong package didn't deserve the honor of basking in their brilliance. His brain continued its battle against itself. You probably sent the right package to the wrong system, it teased. Or, he thought as he swallowed hard, you distributed the wrong package to the entire network. A wave of panic engulfed him, and his entire body felt hot.
Admin
this story was quite a let down because of how poorly written the ending was.
Admin
Admin
Stream, my friend, is not defunct. In fact, I worked that same job supporting HP printers at their site in Hillsboro, Oregon.
Granted, I was there to take the sweet training pay and leave before they noticed how they had written their contracts incorrectly (4 weeks of F/T training at $12 was supposed to turn into minimum wage if you left before you worked the phones but they messed up the exact wording so I didn't get dinged).
Anyways, they still exist. And they still suck. Do a Google search for TUBERCULOSIS, STREAM, and HILLSBORO and you'll see what I mean.
Peace, Tyler
Admin
What a well informed response, but no, we're not curious. Not curious in the least mate. Don't give a kangaroos butt. Where exactly do you think you are? Nobody reading TDWTF wants to read or learn anything. Get with the program and make an idiotic comment or write some pseudocode or just lash out at someone.
Lame WTF too. About as interesting as the "CD tray cup holder" or "I can't find the 'enter' key"
Admin
NO HE CAN'T!!!!!
[push]
shoomp.
Admin
HYPNOTOAD!!!
Admin
Ah, thanks for clearing that up.
(Man, comments move fast here.)
Admin
With that kind of 3 finger configuration carpal tunnel here I come. Or maybe my mouse is too small. Or my hands too big.
Admin
So all the 1024 words of the front page write-up managed to not even tell us about steps 1-4. WTF? Jake needs some sleep or summat?
Admin
Almost reads like one of those lame BBS (or forum) games where someone starts a story in a thread and then others add a sentence or two onto it in their replies.
It almost always leads to porn.
Admin
What kind of modem did the second technician use? Maybe it was only 28.8. That would explain A LOT!
Admin
Is there a wrong click?
Admin
"The DVD player is in a puddle of cat piss and it electrocutes you when you touch it. You are dead."
Admin
My parents used to ask me to fix problems with a PC my sister gave them. The technician had sent out an SMS package named "DO NOT SEND" to the whole network. Long live the technician!
Admin
That's how the script for the movie "Starship Troopers" was made.
chl
Admin
[quote user="JL"] [/quote]Looks like Jake only used points 4 and 5... A pity, since the story is kind of pointless without the rest. I assume from your reaction that the office decoration ponderings and morning-after anxiety were fabricated for comedic effect.[/quote]
Yep, pretty much.
My exact words in the submitted version were, "I got a little nervous."
Admin
It was 10 years ago, but not in Australia. It was in Texas.
Side note: When one of our customers found out they were talking with someone in a Texas call center, they would sometimes become outraged, as if we expected them to walk the distance instead of simply talk on the phone. If only they knew what the future held...
Admin
Thanks for the clarification. Beats me why anybody thinks it's better to blow it up to 1000 words and then forget to add the punchline.
Admin
Worst WTF (writing) ever?
Admin
Admin
Can we PLEASE stop with the creative-writing WTF's and go back to the good old days when actual WTFs were posted? If I want to read creative writing, I'll read creative writing from somebody that is good at it. If I want to see horrible WTF code, I come here.
Admin
Nope, that's wrong.
Shatter attack used a fact that one could send specifically crafted window messages (and initiate WM_TIMER messages) to a window belonging to a process running with different credentials, causing memory overwrite and arbitrary code execution. But only to the window on the current desktop. If a service that runs as LOCAL_SYSTEM creates a window on the user's desktop (for example, for a taskbar notification icon) you could use that window to take over the privileged process. This was mitigated in XP SP2, and completely eliminated in Vista/WIndows 2008.
Admin
More like "DO NOT SUBMIT THIS WTF STORY" (without a review checking for a cohesive story line)
Admin
No NO! Wait! I left my finger on the decision page. It doesn't count.
Admin
Using a top secret Twitter prototype?
Admin
Once I thought I screwed up badly at work. I was all panicked. But in fact I didn't, some other guy did lol.
Admin
Let me spruce that up for you, WTF style.
It was a dark and dreary evening, John had spent all day sorting SIMMS into EDO and FPM because his bosses at UVN were so stupid they couldn't start a PowerPoint without calling the space station for help. Two weeks later people wouldn't talk to John and walked away from him and told him that there was a big screw up and MacroHard was going to drop their contract. Oh no! thought John! Had he accidently CC'd his customers the midget porn links he was saving for later?
And that is why you never spray oven cleaner on a cat! Also, John just forgot to put on deoderant that day.
Admin
Almost completely eliminated in Vista/Win2008. I don't have a setup on which I can test it, but I'm thinking maybe a program running as a local admin could still execute a successful privilege escalation by using a shatter attack against a program running as a domain admin.
Admin
Just to clarify for everyone that doesn't want to read the pointless blathering so far:
An idiot college student wrote a huge WTF on how he was an idiot and sent out something clearly marked "DO NOT EVER USE!" and instead of admitting that he screwed up he came here to try to make himself feel better about being a dumbass.
Oh plus he's a terrible writer that can't get to the freaking point.
Admin
You don't quite get what local admin means. Member of local Administrators (running not on a Restricted token in Vista/2008) also has Debug privilege. That means his process can open any other process ID with full access, if SE_DEBUG_PRIVILEGE is enabled. You don't need no stinking Shatter for that. As Raymond Chen says, you're already on another side of the airtight hatch.
Admin
Obviously they used a very lossy compression algorithm. Perhaps whomever was responsible should consider something lossless next time.
Admin
Admin
An idiot read the story and didn't get it. Then he read the comments and didn't understand them either. Then he posted an idiotic summary that actually screwed up the story even worse than the original article. He probably doesn't even realise he's a dumbass.
Oh, plus he's a perfectly good writer, but his reading comprehension skills are near zero.
Admin
Admin
Nice.
Your story at least made me smile, unlike the original front page.
Admin
Worst movie EVER!
Admin
Admin
I think the SMS package ended up all over Ms Fox's face.
From what i hear, you can only see this director's cut on disc two from the Ultimate Wet Chocolate Justice Edition. :(
Admin
Who clicks the right-mouse button with their ring-finger? Showing people your new ring might have adverse effects.
Admin
Too few will get that reference, methinks.
But I for one did genuinely LOL. :)
TRWTF is that he left the stage far too soon... :(
Admin
Too few will get that reference, methinks.
But I for one did genuinely LOL. :)
TRWTF is that he left the stage far too soon... :(
Admittedly my comment would have made more sense if I'd actually quoted correctly. What a very Reg Prescott mistake to make. :|
Admin
Admin
Admin
The same thing happened to me once.
I was working on some complex code and happily submitted the code to the trunk. The next day the building's elevator broke! It seems the person who broke the elevator didn't realize you aren't supposed to jam the door open with brute force, as the door was a bit broken, hence the sign "Do not jam door open". Alas, I could not fathom why they would want to tempt fate by keeping that elevator running.
Tada! A WTF story!
</joking>