DOCUMENT:Q214802 TITLE :WinNT Lets You Paste Text into Unlock Workstation Dialog Box PRODUCT :Windows NT; Windows NT, Terminal Server Edition PROD/VER:4.0 OPER/SYS:WINDOWS NT KEYWORD :kbbug4.00 kbfix4.00 ------------------------------------------------------------------------------- The information in this article applies to: - Microsoft Windows NT Server, Enterprise Edition version 4.0 - Microsoft Windows NT Workstation versions 3.51, 4.0 - Microsoft Windows NT Server versions 3.51, 4.0 - Microsoft Windows NT Server version 4.0, Terminal Server Edition ------------------------------------------------------------------------------- SYMPTOMS ======== A problem in Windows NT enables someone with physical access to the console of a Windows NT system where a user is currently logged on and the console is locked to retrieve the first line of text from the logged on user's clipboard. This is done by pasting (pressing CTRL+V) the clipboard contents into the User name field of the Unlock Workstation dialog box. Microsoft has not received any reports of adverse effects as a result of this issue. Terminal Server connections are not impacted by this bug, although the Terminal Server console would be. RESOLUTION ========== Windows NT 4.0 -------------- A supported fix that corrects this problem is now available from Microsoft, but has not been fully regression tested and should be applied only to systems determined to be at risk of attack. Please evaluate your system's physical accessibility, network and Internet connectivity, and other factors to determine the degree of risk to your system. If your system is sufficiently at risk, Microsoft recommends you apply this fix. Otherwise, wait for the next Windows NT 4.0 or Windows NT Server 4.0, Terminal Server Edition service pack that contain this fix. To resolve this problem immediately, contact Microsoft Product Support Services to obtain the fix. For a complete list of Microsoft Product Support Services phone numbers and information on support costs, please go to the following address on the World Wide Web: http://support.microsoft.com/support/supportnet/default.asp The version of this fix should have the following file attributes or later: Date Time Size File Name Platform ------------------------------------------------------------- 01/18/99 07:06p 124,176 Msgina.dll (x86) 01/18/99 07:08a 160,528 Msgina.dll (Alpha) Windows NT 4.0 with Service Pack 4: This hotfix has been posted to the following Internet location: ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/ hotfixes-postSP4/Gina-fix/ Windows NT 4.0 with Service Pack 3: This hotfix has been posted to the following Internet location: ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/ hotfixes-postSP3/Gina-fix/ WARNING: If you install the SP3 version of this hotfix you may invalidate other Post-SP3 hotfixes that also include the replacement of Msgina.dll in the %Windows%\System32 folder. To eliminate the vulnerabilities identified in this fix and other Post-SP3 fixes, please install Service Pack 4 and then apply the Post-SP4 version of this hotfix. Windows NT Server 4.0, Terminal Server Edition ---------------------------------------------- This hotfix has been posted to the following Internet location: ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40TSE/ hotfixes-postSP3/Gina-fix/ NOTE: If this product was already installed on your computer when you purchased it from the Original Equipment Manufacturer (OEM) and you need this fix, please call the Pay Per Incident number listed on the above Web site. If you contact Microsoft to obtain this fix, a fee may be charged. This fee is refundable if it is determined that you only require the fix you requested. However, this fee is non-refundable if you request additional technical support, if your no-charge technical support period has expired, or if you are not eligible for standard no-charge technical support. For more information about eligibility for no-charge technical support, see the following article in the Microsoft Knowledge Base: Q154871 Determining If You Are Eligible for No-Charge Technical Support Windows NT 3.51 --------------- A hotfix is not available for Windows NT 3.51. STATUS ====== Microsoft has confirmed this problem could result in some degree of security vulnerability in Windows NT versions 3.51 and 4.0 and Windows NT Server 4.0, Terminal Server Edition. MORE INFORMATION ================ Gina-fix also resolves the problem discussed in the following article in the Microsoft Knowledge Base: Q188700 Screensaver Password Works Even if Account Is Locked Out Additional query words: 3.51 4.00 sp1 sp2 sp3 sp4 tse wts ============================================================================ THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.