admin/0day
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
0day/97-Windows提权/MS11-062
History
helloexp ee00db5c46 add windows 提权
2022-02-24 17:57:42 +08:00
..
40627.exe
add windows 提权
2022-02-24 17:57:42 +08:00
CVE-2011-1974.c
add windows 提权
2022-02-24 17:57:42 +08:00
MS11-062.exe
add windows 提权
2022-02-24 17:57:42 +08:00
README.md
add windows 提权
2022-02-24 17:57:42 +08:00
service_st.png
add windows 提权
2022-02-24 17:57:42 +08:00
win2003.png
add windows 提权
2022-02-24 17:57:42 +08:00

README.md

MS11-062

An elevation of privilege vulnerability exists in the NDISTAPI.sys component of the
Remote Access Service NDISTAPI driver.The vulnerability is caused when the NDISTAPI 
driver improperly validates user-supplied input when passing data from user mode
to the Windows kernel. An attacker must have valid logon credentials and be able
to log on locally to exploit the vulnerability. An attacker who successfully 
exploited this vulnerability could run arbitrary code in kernel mode (i.e. with NT AUTHORITY\SYSTEM  privileges)

Vulnerability reference:

Usage

If Admin have enable the routing and remote access service start_service

c:\> MS11-62.exe

win2003