NT AUTHORITY\Authenticated Users:(I)(M) means that every authenticated user has modify access, (M) stands for Modify, on the files, so they can read, write and delete the files.īINARY_PATH_NAME : "C:\MAMPPRO\MAMPPROService.exe"Ĭ:\MAMPPRO>icacls c:\MAMPPRO\MAMPPROService.exeĬ:\MAMPPRO\MAMPPROService.exe BUILTIN\Administrators:(I)(F) Which means that a low-privileged user can modify those services and execute code with ‘SYSTEM’ privileges on the system.
All those services runs with 'SYSTEM' privileges and they have weak file permission. MAMPPRO Windows installer installs seven services called 'MAMPPRO’, 'MAMPPRO-Apache', ‘MAMPPRO-MySQL’, ’MAMPDNS’, ‘MAMPPRO-Memcached', ‘emailrelay-service.exe’, and 'MAMPPRO-NGINX'.
MAMP MEMCACHE PRO
Change Mirror Download # Exploit Title: MAMP PRO 4.2.0 Local Privilege Escalation
0 kommentar(er)
