admin/0day
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
0day/97-Windows提权/MS15-015
History
helloexp ee00db5c46 add windows 提权
2022-02-24 17:57:42 +08:00
..
ms15-015.zip
add windows 提权
2022-02-24 17:57:42 +08:00
README.md
add windows 提权
2022-02-24 17:57:42 +08:00

README.md

MS15-015

An elevation of privilege vulnerability exists in Microsoft Windows when it fails to properly validate and enforce impersonation levels. 
An attacker who successfully exploited this vulnerability could bypass impersonation-level security checks and gain elevated privileges on a targeted system. 
This vulnerability can be exploited only in the specific scenario where the process uses SeAssignPrimaryTokenPrivilege, which is not available for normal processes.

Vulnerability reference:

Usage

c:\> MS15-015.exe "whoami"

Thanks

感谢 @浮萍 帮助补充完善