CVE-1999-1104 Information

Description

Windows 95 uses weak encryption for the password list (.pwl) file used when password caching is enabled which allows local users to gain privileges by decrypting the passwords.

Reference

http://marc.info/?l=bugtraq&m=87602167418931&w=2 http://marc.info/?l=bugtraq&m=88536273725787&w=2 http://marc.info/?l=ntbugtraq&m=88540877601866&w=2 http://support.microsoft.com/support/kb/articles/q140/5/57.asp http://www.iss.net/security_center/static/71.php