Privilege Escalation — Nssm-2.24

  • Exploitation: The attacker places a malicious binary (e.g., a payload generated by Metasploit or a simple user-addition script) in the vulnerable path (e.g., C:\Program Files\My.exe).
  • Trigger: The attacker restarts the service or waits for a system reboot. The malicious binary is executed as SYSTEM.

    • Look for:

    Modern service managers include safeguards against arbitrary binary replacement and insecure service configuration modification. NSSM 2.24, however, was designed for convenience—not security. Its core features that enable privilege escalation include: nssm-2.24 privilege escalation

    NSSM 2.24, when used to install a Windows service with default parameters, may create a service that allows a low-privileged, authenticated user to modify the service binary path or execute arbitrary commands as SYSTEM. This behavior results in a local privilege escalation vulnerability. Exploitation: The attacker places a malicious binary (e

    Main Menu

    Tamil Nadu Postal Circle Study Material Book Notes

    Tamil Nadu Postal Circle Study Material Book Notes [Full-Package]

    475

    Add to cart