|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Symantec LiveState Agent for Windows vulnerability - Local Privilege Escalation
From: Steve Shockley (steve.shockley
shockley.net)
Date: Tue Dec 05 2006 - 13:55:51 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
eugeny gladkih wrote:
>>>>>> "MS" == Michael Scheidell <scheidellsecnap.net> writes:
> >> 1. kill shstart.exe process
> MS> Wouldn't you have to be administrator to kill shstart.exe?
> LocalSystem account has more privilegies then administrator's one.
If you've already got Administrator, you can just run
at <time> /interactive "cmd.exe"
and get a shell as SYSTEM.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]