From: Ricardo Abraham Aréchiga Cervantes (rabrahamac@gmail.com)
Date: Thu Jul 14 2005 - 09:39:57 EDT
If budget permits... http://www.argeniss.com/products.html, they have
a Windows 2000 local exploit. MS was notified, but still no patch
available.
Ricardo Abraham
On 7/12/05, Bones <the.bones@gmail.com> wrote:
> All,
>
> Working on a pen-test here where low-privilege user accounts are easy
> enough to obtain on some target servers, however, escalating privs is
> giving us some fits.
>
> Most of the targets are Win2003 or Win2000-SP4.
>
> What is the current state of escalating privileges on Windows hosts?
> Any new tools or working exploits out there which are publicly
> accessible? Most of the silver bullets of the past (like PipeUpSam,
> PipeUpAdmin) are of course no longer usable largely after Win2000-SP3.
> We did find some exploits (MS05-012, etc.) that might have worked, but
> this client is patched pretty solid.
>
> Interested to see the feedback...
>
> --
> Bones*
> the.bones@gmail.com
>
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:33 EDT