View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0005578 | JEDI API & WSC Library | Windows Security Code Library (JWSCL) | public | 2011-05-09 21:10 | 2011-05-10 11:09 |
| Reporter | CCRDude2 | Assigned To | ChristianWimmer | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | resolved | Resolution | fixed | ||
| Summary | 0005578: JwElevateProcess fails on valid unencrypted passwords on Win XP | ||||
| Description | Situation: using JwElevateProcess as a runas replacement due to XP admins-with-no-password issues. I pass a login helper method to JwElevateProcess which uses a TjwCredentialsPrompt. Since this happens on XP (and in XP compatibility mode), RunCreateProcess within JwElevateProcess is called. There, CreateProcessWithLogonW is called with parameter DecryptedPassword. This is only set on IsEncryptedPassword = true - if I use TjwCredentialsPrompt, I have an unencrypted password, which gets ignored. With DecryptedPassword empty, CreateProcessWithLogonW always fails, even on valid accounts. | ||||
| Additional Information | Workaround: pass encrypted password (recommended anyway), or patch code (add "else" part to "if IsEncryptedPassword". | ||||
| Tags | No tags attached. | ||||
|
|
I added the else branch to allow decrypted passwords; otherwise the event call had to be changed to allow only encrypted passwords. The subversion repository of today's date contains the fix. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2011-05-09 21:10 | CCRDude2 | New Issue | |
| 2011-05-09 21:10 | CCRDude2 | Status | new => assigned |
| 2011-05-09 21:10 | CCRDude2 | Assigned To | => ChristianWimmer |
| 2011-05-10 11:09 | ChristianWimmer | Note Added: 0018548 | |
| 2011-05-10 11:09 | ChristianWimmer | Status | assigned => resolved |
| 2011-05-10 11:09 | ChristianWimmer | Resolution | open => fixed |
