«

"Matt B" wrote
> Haven't found one for either W2K or XP

The latest Version of revelation works on 2k, I used it a week or so ago at
work.

In news:,
T.N.O. <> wrote:
> "Matt B" wrote
>> Haven't found one for either W2K or XP
>
> The latest Version of revelation works on 2k, I used it a week or so
> ago at work.

Kewl - ta for that, must give it a try...

--
Regards,

Matt B
~~~~~~~~~~~~~~~~~~~~~~
There are 10 types of people.
Those who get binary...
And those who don't.
~~~~~~~~~~~~~~~~~~~~~~

On Wed, 8 Oct 2003 19:40:32 +1300, "Southern Kiwi"
<southern_kiwi@*spamsucks*hotmail.com> wrote:

>How can I reveal one of my email passwords in OE 6 ?
>TIA

I use 007 Password Recovery. Not sure whether it will work on XP.

http://homepages.paradise.net.nz/taylorma/007.zip

Cheers, Kooky

In article <>, says...
> "Matt B" wrote
> > Haven't found one for either W2K or XP
>
> The latest Version of revelation works on 2k, I used it a week or so ago at
> work.

****ing unbelievable isnt it - thankfuly ms finally got a clue and
pluged the hole that allows that exploit

--
================================================== =
Steven H

"Steven H" wrote
> ****ing unbelievable isnt it - thankfuly ms finally got a clue and
> pluged the hole that allows that exploit

no-one has said that it doesnt work in XP... yet.

"Steven H" <> wrote in message
news: z...
> > The latest Version of revelation works on 2k, I used it a week or so ago
at
> > work.
>
> ****ing unbelievable isnt it - thankfuly ms finally got a clue and
> pluged the hole that allows that exploit

It doesn't work on XP for me. Assuming the version you are referring to is
off snadboy.com v2

Steven H wrote:
> In article <>, says...
>> "Matt B" wrote
>>> Haven't found one for either W2K or XP
>>
>> The latest Version of revelation works on 2k, I used it a week or so
>> ago at work.
>
> ****ing unbelievable isnt it - thankfuly ms finally got a clue and
> pluged the hole that allows that exploit

"Exploit"? All you need to do is ask the edit box nicely for what text it
has in it, and it tells you (Send a WM_Gettext message). Edit boxes do this
by design - the fact that the programmers set a mask on them (With the *
character) shouldn't change that design.

Cheers,
Nicholas Sherlock

In article <3f84e9a2$>, says...
> "Steven H" wrote
> > ****ing unbelievable isnt it - thankfuly ms finally got a clue and
> > pluged the hole that allows that exploit
>
> no-one has said that it doesnt work in XP... yet.

it worked in pre 2000 because sending WM_GETTEXT would let you get the
password text and not "***"

however if you send a WM_GETTEXT message to a password control, it first
checks the calling process to determine if it has access. If the calling
process is the same process as the one that created the password
control, the WM_GETTEXT message still returns the password. However, if
the calling process is different, then the return is
ERROR_ACCESS_DENIED.

BUT... - drumroll

you CAN get the text using WM_GETTEXT if you inject your code into the
process you are trying to hack - the secret is to ensure that the
exploit code is inside the process that owns the Password box.

there are ways to circumvent souch hacks, one is to never store the
password in the control, secondly is to eat WM_GETTEXT and prehaps
return garbage.

so i stand corrected

--
================================================== =
Steven H

In article <bm58qs$ku0$>,
says...
> Steven H wrote:
> > In article <>, says...
> >> "Matt B" wrote
> >>> Haven't found one for either W2K or XP
> >>
> >> The latest Version of revelation works on 2k, I used it a week or so
> >> ago at work.
> >
> > ****ing unbelievable isnt it - thankfuly ms finally got a clue and
> > pluged the hole that allows that exploit
>
> "Exploit"? All you need to do is ask the edit box nicely for what text it
> has in it,

read my other post and get a clue

you can do it but requries hard work on 2k & XP

--
================================================== =
Steven H