|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Pascal C. Kocher (pascal.kocher
NETBEAT-SECURITY.CH)Date: Wed Jan 10 2001 - 07:46:24 CST
Hi all
> The only things that are possible are:
>
> 1) There is a known privilege escalation vulnerability that can be
> exploited with local unprivileged access. The attacker can download and
> run that code to gain Administrator access.
>
> 2) Brute force attack against accounts with local Administrator
> privilege.
>
> 3) Look for vulnerabilities in other systems that the web server can
> talk to. Some of those may expose Domain accounts with Administrator
> privilege on the web server or other systems that are trusted by the web
> server.
A possibility is to schedule the start of an application (netcat) per AT
command. Even under win2k it will be run as SYSTEM.
Regards,
Pascal.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]