COMMAND

    Another way to gain Admin rights on NT and more

SYSTEMS AFFECTED

    WinNT

PROBLEM

    Javier Garza found following.  It  was chesked on NT WKS SP4.   By
    default

        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

    allows everyone  to set  value.   Also you  can add  a entry  that
    point s to  a shortcut (.lnk),  who runs minimized  and executes a
    batch file (.bat) with for example:

        net localgroup administrators <user> /add

    And then deletes itself.   So after an administrator logs  locally
    the user is added to the administrator group.

SOLUTION

    Change that value to something safer.