Reply to post: Windows

Sysadmin cracked military PC’s security by reading the manual

Stu J

Windows

1. Take hard disk out of PC

2. Hang on another PC

3. Copy cmd.exe over the top of utilman.exe (may need to fart about with permissions)

4. Put hard disk back in original PC and boot

5. Click on accessibility icon when Windows Logon screen appears

6. Marvel at the command prompt that appears running in the context of SYSTEM

7. Use command line tools to create a new user, as member of administrators group

8. Full logged-in admin access to operating system at your fingertips

Yes, Bitlocker generally thwarts this approach; but it's a fairly quick way to earn £50 for unlocking people's home PCs when they've managed to forget their password.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019