=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-


    Date: Пн, 01 ноя 1999  20:43:30

   От: Eric Gisin	 

 Кому: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

 Тема: SCSI port device is backdoor to disk access

--------------------------------------------------------------------------------




Windows NT restricts fixed disk access to Administrators. These are the

\\.\PhysicalDrive# and \\.\X: devices. However, there are SCSI port devices

that are not restricted, the \\.\SCSI#: devices.



I noticed that ASPI based benchmarks could be run by anyone. ASPI opens the

SCSI device and can do disk IO using SCSI commands. Examples are Adaptec

SCSI Bench and asbnch32 from www.winimage.com. The latter includes source,

which could be modified to edit disks.



Note that fixing the SCSI device permissions will disable all CD burning

software and other ASPI utilities for non admins. Oh, EIDE drives can also

be accessed through the ATAPI miniport.