PRB: SCardEstablishContext() Returns ERROR_ACCESS_DENIED with Hotfix Q221991

ID: Q230130

The information in this article applies to:
  • Microsoft Win32 Application Programming Interface (API), included with:
    • Microsoft Windows NT 4.0

SYMPTOMS

For Smart Card Resource Manager version 1.0, SCardEstablishContext() returns ERROR_ACCESS_DENIED (5) if the following Hotfix (security bulletin MS99-008) has been applied:

Q221991 Screen Saver Vulnerability Lets User Privileges Be Elevated


CAUSE

Because of changes in ACL processing in service packs after SP4, the Smart Card Resource Manager's version 1.0 client is denied access to its server.


RESOLUTION

Either do not apply this Hotfix (security bulletin MS99-008), or do not use the Smart Card Resource Manager version 1.0.


STATUS

Microsoft has confirmed this to be a problem in the Microsoft products listed at the beginning of this article.


MORE INFORMATION

You can determine whether the Hotfix has been applied by examining the following files. The English version of this fix should have the following file attributes or later:

Date Time Size File Name Platform
03/03/99 12:00p 247,056 Advapi32.dll (x86)
03/12/99 10:00p 188,176 Winlogon.exe (x86)
03/03/99 12:00p 404,240 Advapi32.dll (Alpha)
03/12/99 09:59p 273,680 Winlogon.exe (Alpha)


REFERENCES

For additional information about this Hotfix, please see the following article in the Microsoft Knowledge Base:

Q221991 Screen Saver Vulnerability Lets User Privileges Be Elevated

Additional query words: Smart Card Resource Manager SCardEstablishContext ERROR_ACCESS_DENIED

Keywords : kbAPI kbKernBase kbSDKPlatform kbSDKWin32 kbSecurity kbDSupport kbGrpKernBase kbSmartCard
Version : winnt:4.0
Platform : winnt
Issue type : kbprb


Last Reviewed: December 29, 1999
© 2000 Microsoft Corporation. All rights reserved. Terms of Use.