SANS ISC Diary - Discovering contents of folders in Windows without permissions

18-02-2020 / In categories SANS ISC, News, 2020

Microsoft, SANS, Vulnerability, Windows

Translation: CS

A Diary of mine was published today on the SANS Internet Storm Center. This one deals with a strange side effect of the way in which Windows deals with file permissions, which enables any user, regardless of permissions, to brute-force contents of any local folder.