Check Matt Conover's (shokat_private) IIS impersonation exploit, he comes up with a cool hack for such situations (intrusive though... ;p) adding a user in the administrators group and logon as that user to create a new admin privileged process. here it's is: http://www.w00w00.org/files/iisoop.tgz (neat sploit, nice work!) - noir -----Original Message----- From: wirepair [mailto:wirepairat_private] Sent: Monday, July 14, 2003 12:46 PM To: vuln-devat_private Subject: Named Pipe Impersonation -> CreateProcessAsUser(); ....
This archive was generated by hypermail 2b30 : Mon Jul 14 2003 - 14:34:59 PDT