archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/windows/appcompat/shims/general/ieunharden.cpp

269 lines
6.8 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2002-2003 Microsoft Corporation
  5. Module Name:
  7. IEUnHarden.cpp
  9. Abstract:
  11. IESoftening modifications
  13. History:
  15. 01/15/2003 prashkud Created
  17. --*/
  19. #include "precomp.h"
  21. IMPLEMENT_SHIM_BEGIN(IEUnHarden)
  23. #include <windows.h>
  24. #include <urlmon.h>
  25. #include "ShimHookMacro.h"
  27. APIHOOK_ENUM_BEGIN
  29. APIHOOK_ENUM_END
  31. #define SUCCESS(val) ((val == ERROR_SUCCESS) ? TRUE : FALSE)
  33. IInternetSecurityManager *g_pISM = NULL;
  35. BOOL
  36. IEHardeningEnabled()
  37. {
  38. BOOL bRet = FALSE;
  39. HKEY hUserKey = 0;
  40. HKEY hAdminKey = 0;
  42. const WCHAR wszIEUserHardeningPath[]
  43. = L"SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}";
  45. const WCHAR wszIEAdminHardeningPath[]
  46. = L"SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}";
  49. DWORD dwVal = 0;
  50. DWORD dwcbBuf = sizeof(dwVal);
  52. if (SUCCESS(RegOpenKeyExW(HKEY_LOCAL_MACHINE, wszIEUserHardeningPath, 0, KEY_READ | KEY_WOW64_64KEY, &hUserKey)))
  53. {
  54. if (SUCCESS(RegQueryValueExW(hUserKey, L"IsInstalled", NULL, NULL, (LPBYTE)&dwVal, &dwcbBuf)))
  55. {
  56. if (dwVal == 1)
  57. {
  58. bRet = TRUE;
  59. }
  60. }
  61. }
  63. dwVal = 0;
  64. dwcbBuf = sizeof(dwVal);
  66. if (!bRet )
  67. {
  68. if (SUCCESS(RegOpenKeyExW(HKEY_LOCAL_MACHINE, wszIEAdminHardeningPath, 0, KEY_READ | KEY_WOW64_64KEY, &hAdminKey)))
  69. {
  70. if (SUCCESS(RegQueryValueExW(hAdminKey, L"IsInstalled", NULL, NULL, (LPBYTE)&dwVal, &dwcbBuf)))
  71. {
  72. if (dwVal == 1)
  73. {
  74. bRet = TRUE;
  75. }
  76. }
  77. }
  78. }
  80. if (hUserKey)
  81. {
  82. RegCloseKey(hUserKey);
  83. hUserKey = 0;
  84. }
  86. if (hAdminKey)
  87. {
  88. RegCloseKey(hAdminKey);
  89. hAdminKey = 0;
  90. }
  91. return bRet;
  92. }
  95. VOID
  96. AddUrlToTrustDomain(CString& csUrl, BOOL bIntranet)
  97. {
  98. if (g_pISM)
  99. {
  100. DWORD dwZone = bIntranet ? URLZONE_INTRANET : URLZONE_TRUSTED;
  101. HRESULT hres = g_pISM->SetZoneMapping(dwZone, csUrl.Get(), SZM_CREATE);
  103. if (hres == E_ACCESSDENIED)
  104. {
  105. DPFN(eDbgLevelError, "[IEUnHarden] Attempted to enter a non-SSL site \
  106. into a zone that requires server verification \n");
  107. }
  108. else if (hres == E_FAIL)
  109. {
  110. DPFN(eDbgLevelError, "[IEUnHarden] The mapping already exists \n");
  111. }
  112. else if (hres == E_INVALIDARG)
  113. {
  114. DPFN(eDbgLevelError, "[IEUnHarden] Invalid wildcard \n");
  115. }
  116. else if (hres == HRESULT_FROM_WIN32(ERROR_FILE_EXISTS))
  117. {
  118. DPFN(eDbgLevelError, "[IEUnHarden] The mapping already exists in another zone \n");
  119. }
  120. else
  121. {
  122. DPFN(eDbgLevelError, "[IEUnHarden] SetZoneMapping() failed ! \n");
  123. }
  124. }
  125. }
  127. BOOL
  128. ParseCommandLineA(LPCSTR szParam)
  129. {
  130. if (!IEHardeningEnabled())
  131. {
  132. return FALSE;
  133. }
  135. CSTRING_TRY
  136. {
  137. CStringToken csParam(szParam, "|");
  138. CString csTok;
  140. while (csParam.GetToken(csTok))
  141. {
  142. csTok.TrimLeft();
  143. csTok.TrimRight();
  144. if (csTok.ComparePartNoCase(L"TrustedSites", 0, wcslen(L"TrustedSites")) == 0) // TrustedSites is the first word
  145. {
  146. int nLeftBracket, nRightBracket;
  147. CString csUrl;
  149. nLeftBracket = csTok.Find(L'{');
  150. nRightBracket = csTok.Find(L'}');
  151. if (nLeftBracket != -1 &&
  152. nRightBracket != -1 &&
  153. (nLeftBracket + 1) < (nRightBracket - 1))
  154. {
  155. csUrl = csTok.Mid(nLeftBracket+1, nRightBracket-nLeftBracket-1);
  156. AddUrlToTrustDomain(csUrl, FALSE);
  158. }
  159. else
  160. {
  161. DPFN(eDbgLevelError, "Invalid command line. Should be enclosed in {}/n");
  162. }
  163. }
  164. else if (csTok.ComparePartNoCase(L"TrustedIntranetSites", 0,
  165. wcslen(L"TrustedIntranetSites")) == 0) // TrustedIntranetSites is the first word
  166. {
  167. int nLeftBracket, nRightBracket;
  168. CString csUrl;
  170. nLeftBracket = csTok.Find(L'{');
  171. nRightBracket = csTok.Find(L'}');
  172. if (nLeftBracket != -1 &&
  173. nRightBracket != -1 &&
  174. (nLeftBracket + 1) < (nRightBracket - 1))
  175. {
  176. csUrl = csTok.Mid(nLeftBracket+1, nRightBracket-nLeftBracket-1);
  177. AddUrlToTrustDomain(csUrl, TRUE);
  179. }
  180. else
  181. {
  182. DPFN(eDbgLevelError, "Invalid command line. Should be enclosed in {}/n");
  183. }
  184. }
  185. else
  186. {
  187. DPFN(eDbgLevelError, "[IESOFT] Invalid option %s \n", csTok.GetAnsi());
  188. return FALSE;
  189. }
  190. }
  191. }
  192. CSTRING_CATCH
  193. {
  194. DPFN(eDbgLevelError, "Out of Memory \n");
  195. return FALSE;
  196. }
  198. return TRUE;
  199. }
  201. BOOL
  202. InitCOM()
  203. {
  204. BOOL bRet = FALSE;
  205. HRESULT hres = CoInitialize(NULL);
  206. if (SUCCEEDED(hres)||
  207. (hres == S_FALSE)) // COM library is already initialized on this thread
  208. {
  210. hres = CoCreateInstance(CLSID_InternetSecurityManager,
  211. NULL,
  212. CLSCTX_INPROC_SERVER,
  213. IID_IInternetSecurityManager,
  214. (void **)&g_pISM);
  216. if (SUCCEEDED(hres))
  217. {
  218. bRet = TRUE;
  219. }
  220. else
  221. {
  222. DPFN(eDbgLevelError, "Failed to create IInternetSecurityManager object \n");
  223. }
  224. }
  225. else
  226. {
  227. DPFN(eDbgLevelError, "Failed to initialize COM Library \n");
  228. }
  230. return bRet;
  231. }
  233. void
  234. UnInitCOM()
  235. {
  236. if (g_pISM)
  237. {
  238. g_pISM->Release();
  239. }
  240. CoUninitialize();
  241. }
  243. BOOL
  244. NOTIFY_FUNCTION(
  245. DWORD fdwReason
  246. )
  247. {
  248. if (fdwReason == SHIM_STATIC_DLLS_INITIALIZED)
  249. {
  250. if (!InitCOM())
  251. {
  252. return FALSE;
  253. }
  254. if (ParseCommandLineA(COMMAND_LINE) == FALSE)
  255. {
  256. return FALSE;
  257. }
  259. UnInitCOM();
  260. }
  261. return TRUE;
  262. }
  264. HOOK_BEGIN
  266. CALL_NOTIFY_FUNCTION
  268. HOOK_END
  270. IMPLEMENT_SHIM_END