Token Kidnapping Windows 2003 PoC exploit
Quarta, 8 de Outubro de 2008 - Denny RogerPor Cesar Cerrudo
It has been a long time since Token Kidnapping presentation (http://www.argeniss.com/research/TokenKidnapping.pdf) was published so I decided to release a PoC exploit for Win2k3 that alows to execute code under SYSTEM account.
Basically if you can run code under any service in Win2k3 then you can own Windows, this is because Windows services accounts can […]