Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 0.4.15
Component/s: NTCore
Labels:
- HACK

Module:
- ntoskrnl
- se

Description

SepAccessCheckEx doesn't properly validate the access rights. It has a hack to allow access, even though it could not get all rights.
DPRINT("HACK: RemainingAccess = 0x%08lx DesiredAccess = 0x%08lx\n", RemainingAccess, DesiredAccess);
I demoted it to a DPRINT, since it's massively spamming the log. This needs to be fixed!

Attachments

Issue Links

blocks

CORE-14520 CheckTokenMembership returns wrong result when checking local admin against SECURITY_LOCAL_SYSTEM_RID

Resolved

is blocked by

CORE-18620 'SepAccessCheck(): Failed to grant access rights' + "Traverse access failed!", at end of Stage 3

Resolved

CORE-18521 TaskMgr triggers 2 'SepAccessCheck(): Failed to grant access rights' + 'NtOpenProcessToken failed', each time it updates

Resolved

relates to

CORE-20052 0.4.15 Regression - Critical: "SaveDefaultUserHive() failed Rebooting now" for non-Latin in Release Mode

Open

CORE-9172 Major debug log spam with "HACK: RemainingAccess = XXXXXXXX DesiredAccess = XXXXXXXX" messages

Resolved

Sub-Tasks

Progress

1.	rpcrt4 relies on default security descriptor when creating pipes	Resolved	George Bișoc
2.	dhcpcsvc relies on default security descriptor when creating its API pipe	Resolved	George Bișoc
3.	\Device\Tcp (and other device objects) has incorrect ACLs	Resolved	Pierre Schweitzer
4.	advapi32 passes KEY_WOW64_32KEY and KEY_WOW64_64KEY to the kernel instead of filtering it	Resolved	ThFabba

Activity

People

Assignee:: George Bișoc

Reporter:: Timo Kreuzer

Votes:: 1 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2015-02-15 00:24

Updated:: 2025-03-24 23:52

Resolved:: 2022-05-06 09:40