COMMAND

    Screen saver (Economist)

SYSTEMS AFFECTED

    WinNT 4.0

PROBLEM

    Ed Walsh posted following.  A user pointed out a gaping hole in NT
    security  when  using  the  Economist  screensaver  99.  With this
    screensaver installed and the Password Protected box checked,  you
    can launch IE which comes to the foreground and goes to their home
    page.  From there you can browse the network and even open files..
    excel spread sheets... word docs... what ever you want.  The  best
    part is your screen is still  locked!  This was verified on  three
    machines all NTWKS 4.0  SP5 with IE5.   This is true if  you check
    the Password Protected box in the NT 4.0 Screen Saver tab.

SOLUTION

    The Economist  99 SS  has its  own security  module, where you can
    enter a  password that  is different  from your  NT user password.
    This option appears to  be more secure.   This SS seems to  create
    its own "environment", where apps remain active until you go  back
    in and close them.  Stay away from this thing!!!

    Last rumour says the 1999  Screen Saver was pulled out  until this
    gets fully investigated.