How to bypass Re’Quest™ Reservation Software

tim 7 years ago
Read Time:1 Minute, 52 Second

Re’Quest™ Reservation Software

  • Category: Restrictive Software
  • Sub-category: Computer Reservation and Desktop Time Management
  • Vendor: iTeam Resources, Inc.
  • FOOLIT code: DESKQUEST

Description

The Re’Quest computer management software enables the staff of libraries and other institutions to monitor what is happening on their computers. Re’Quest’s central management keeps track of what is happening within the network at all times, enabling administrators to take actions such as sending information or warning messages to patron acting inappropriately, locking the computers for review of patron activity by an administrator, and even logging the patron off the computer without ever approaching them.

Computers are often configured to limit users to a certain amount of time per day through the enforcement of a “daily usage policy”, sometimes as little as 15 minutes for “e-mail access” stations. The software is very comprehensive, with optional features such as requiring acceptance of a Computer Use Policy, filtering Internet access, denying usage if when fees/fines are due, and so on. There are two modes that the DESKQUEST software can run in: “Windows Desktop Mode” and “Menu-ed Desktop Mode”.

Advantages to fooling this system

  • Use system computers without a valid DESKQUEST log-in
  • Bypass the daily use policy for unlimited time at stations
  • Override reservations that were pre-made by other users

Vulnerability

The vulnerability relies on the delayed employment of the DeskQuest.exe executable by Windows task scheduler. In order to bypass the “Windows Desktop Mode” on stations with the Windows operating system, simply create a batch file with this source:

:a
@taskkill /F /T /IM DeskQuest.exe
@goto a

To use this script, you must restart a computer by forced shutdown, plug in a thumb drive with the batch file on it, and run the file in the few seconds you have at startup before the DeskQuest UI comes up. Then, as soon as DeskQuest.exe is launched, the script will shut it down and let you know that the process and any applicable child processes were terminated. At this point, you will have successfully fooled the Re’Quest™ Reservation Software for an unlimited duration. Everything returns to normal after the computer is restarted.

Additional Resources

  • Program overview (.pdf)
  • Typical executable and dependencies (.7z) [v5.50.0.0]
1 0

About Post Author

tim

ttechlb@gmail.com
Happy
Happy
0 %
Sad
Sad
0 %
Excited
Excited
0 %
Sleppy
Sleppy
0 %
Angry
Angry
0 %
Surprise
Surprise
100 %
Next Post

Celsius Network rolls out direct crypto purchases

Wed Feb 19 , 2020
Cryptocurrency lending startup Celsius Network has just rolled out the ability to purchase crypto with fiat directly, thanks to a newly announced partnership with Simplex. This means that you can now purchase your BTC from a United States dollar exchange in their local currency. How does it work? Simply put, […]

You May Like

Subscribe US Now