17 Dec
2003
17 Dec
'03
11:17 p.m.
Ted Garrett wrote:
Microsloth has, at the heart of it's system, a call which traps ALL KEYSTROKES and EVENTS. This call exists from Win32s on, and can be placed inside of a DLL which most users would have no idea was loaded. Even under NT, this DLL can be made to remain resident and trapping Keystrokes, events, and window contents.
Does this just BEG to be exploited?
Also, permissions of many of the system binaries on NT 4.0 are wrong. - Igor.