Windows Escalate Service Permissions Local Privilege Escalation | Metasploit Exploit Database (DB)

Windows Escalate Service Permissions Local Privilege Escalation

This module attempts to exploit existing administrative privileges to obtain a SYSTEM session. If directly creating a service fails, this module will inspect existing services to look for insecure file or configuration permissions that may be hijacked. It will then attempt to restart the replaced service to run the payload. This will result in a new session when this succeeds. If the module is able to modify the service but does not have permission to start and stop the affected service, the attacker must wait for the system to restart before a session will be created.

Search Other Modules


Rank

  • Normal

Authors

  • scriptjunkie < >

Development


Similar Modules


Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use post/windows/escalate/service_permissions
msf post(service_permissions) > set SESSION [INTEGER]


Module Options

AGGRESSIVE Exploit as many services as possible (dangerous)
LHOST Listener IP address for the new session
LPORT Listener port for the new session (default: 4444)
PAYLOAD Windows Payload to use. (default: windows/meterpreter/reverse_tcp)
SESSION The session to run this module on.
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module