infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add another ref about the technique

unstable
sinn3r 2012-08-15 14:46:51 -05:00
parent a8ea014f25
commit 54146b8e99
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
modules/exploits/windows/local/trusted_service_path.rb
View File

@ -31,10 +31,14 @@ class Metasploit3 < Msf::Exploit::Local
of these unexpected paths, sometimes escalate privileges if run as SYSTEM. of these unexpected paths, sometimes escalate privileges if run as SYSTEM.
Some softwares such as OpenVPN 2.1.1, or OpenSSH Server 5, etc... all have the Some softwares such as OpenVPN 2.1.1, or OpenSSH Server 5, etc... all have the
same problem. same problem.
The offensive technique is also described in Writing Secure Code (2nd Edition),
Chapter 23, in the section "Calling Processes Security" on page 676.
}, },
'References' => 'References' =>
[ [
['URL', 'http://msdn.microsoft.com/en-us/library/windows/desktop/ms682425(v=vs.85).aspx'] ['URL', 'http://msdn.microsoft.com/en-us/library/windows/desktop/ms682425(v=vs.85).aspx'],
['URL', 'http://www.microsoft.com/learning/en/us/book.aspx?id=5957&locale=en-us'] #pg 676
], ],
'DisclosureDate' => "Oct 25 2001", 'DisclosureDate' => "Oct 25 2001",
'License' => MSF_LICENSE, 'License' => MSF_LICENSE,
@ -136,7 +140,7 @@ class Metasploit3 < Msf::Exploit::Local
print_error("Unable to start #{svr_name}") print_error("Unable to start #{svr_name}")
return return
else else
tried = true tried = true
end end
case s.message case s.message