<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: Re: [PEN-TEST] Expand right under Win2K

Re: [PEN-TEST] Expand right under Win2K

From: Pascal C. Kocher <pascal.kocher_at_NETBEAT-SECURITY.CH>
Date: Wed, 10 Jan 2001 14:46:24 +0100

Hi all

> The only things that are possible are:
>
> 1) There is a known privilege escalation vulnerability that can be
> exploited with local unprivileged access. The attacker can download and
> run that code to gain Administrator access.
>
> 2) Brute force attack against accounts with local Administrator
> privilege.
>
> 3) Look for vulnerabilities in other systems that the web server can
> talk to. Some of those may expose Domain accounts with Administrator
> privilege on the web server or other systems that are trusted by the web
> server.

A possibility is to schedule the start of an application (netcat) per AT
command. Even under win2k it will be run as SYSTEM.

Regards,
Pascal.
Received on Jan 10 2001

This message: [ Message body ]
Next message: Alex Butcher: "Re: [PEN-TEST] Tool for LDAP Enumeration"
Previous message: ian.vitek_at_IXSECURITY.COM: "Re: [PEN-TEST] Tool for LDAP Enumeration"
In reply to: Paul Cardon: "Re: [PEN-TEST] Expand right under Win2K"
Next in thread: Edwards, David (JTD): "Re: [PEN-TEST] Expand right under Win2K"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos