PRB: SCardEstablishContext() Returns ERROR_ACCESS_DENIED with Hotfix Q221991

ID: Q230130

The information in this article applies to:

Microsoft Win32 Application Programming Interface (API), included with:
- Microsoft Windows NT 4.0

SYMPTOMS

For Smart Card Resource Manager version 1.0, SCardEstablishContext() returns ERROR_ACCESS_DENIED (5) if the following Hotfix (security bulletin MS99-008) has been applied:

Q221991 Screen Saver Vulnerability Lets User Privileges Be Elevated

CAUSE

Because of changes in ACL processing in service packs after SP4, the Smart Card Resource Manager's version 1.0 client is denied access to its server.

RESOLUTION

Either do not apply this Hotfix (security bulletin MS99-008), or do not use the Smart Card Resource Manager version 1.0.

STATUS

Microsoft has confirmed this to be a problem in the Microsoft products listed at the beginning of this article.

MORE INFORMATION

You can determine whether the Hotfix has been applied by examining the following files. The English version of this fix should have the following file attributes or later:

Date Time Size File Name Platform

03/03/99 12:00p 247,056 Advapi32.dll (x86)

03/12/99 10:00p 188,176 Winlogon.exe (x86)

03/03/99 12:00p 404,240 Advapi32.dll (Alpha)

03/12/99 09:59p 273,680 Winlogon.exe (Alpha)

Date	Time	Size	File Name	Platform
03/03/99	12:00p	247,056	Advapi32.dll	(x86)
03/12/99	10:00p	188,176	Winlogon.exe	(x86)
03/03/99	12:00p	404,240	Advapi32.dll	(Alpha)
03/12/99	09:59p	273,680	Winlogon.exe	(Alpha)

REFERENCES

For additional information about this Hotfix, please see the following article in the Microsoft Knowledge Base:

Q221991 Screen Saver Vulnerability Lets User Privileges Be Elevated

Additional query words: Smart Card Resource Manager SCardEstablishContext ERROR_ACCESS_DENIED


Keywords          : kbAPI kbKernBase kbSDKPlatform kbSDKWin32 kbSecurity kbSmartCard 
Version           : winnt:4.0
Platform          : winnt 
Issue type        : kbprb

Last Reviewed: May 27, 1999