PRB: SCardEstablishContext() Returns ERROR_ACCESS_DENIED with Hotfix Q221991 (230130)


The information in this article applies to:

  • Microsoft Win32 Application Programming Interface (API), when used with:
    • the operating system: Microsoft Windows NT 4.0
This article was previously published under Q230130

SYMPTOMS

For Smart Card Resource Manager version 1.0, SCardEstablishContext() returns ERROR_ACCESS_DENIED (5) if the following Hotfix (security bulletin MS99-008) has been applied:

221991 Screen Saver Vulnerability Lets User Privileges Be Elevated

CAUSE

Because of changes in ACL processing in service packs after SP4, the Smart Card Resource Manager's version 1.0 client is denied access to its server.

RESOLUTION

Either do not apply this Hotfix (security bulletin MS99-008), or do not use the Smart Card Resource Manager version 1.0.

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

MORE INFORMATION

You can determine whether the Hotfix has been applied by examining the following files. The English version of this fix should have the following file attributes or later:

Date Time Size File Name Platform
03/03/99 12:00p 247,056 Advapi32.dll (x86)
03/12/99 10:00p 188,176 Winlogon.exe (x86)
03/03/99 12:00p 404,240 Advapi32.dll (Alpha)
03/12/99 09:59p 273,680 Winlogon.exe (Alpha)

REFERENCES

For additional information about this Hotfix, please see the following article in the Microsoft Knowledge Base:

221991 Screen Saver Vulnerability Lets User Privileges Be Elevated

Modification Type:MajorLast Reviewed:10/29/2003
Keywords:kbAPI kbKernBase kbpending kbprb kbSecurity kbSmartCard KB230130
©2003 Microsoft Corporation. All rights reserved.