Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 210.48.1.214
- merlot.kudos.net.nz
- Microsoft-HTTPAPI/2.0
- WORKING EXPLOIT
- Microsoft UPnP Local Privilege Elevation Vulnerability
- Disclosed
- 11/12/2019
- Created
- 12/19/2019
- Description
- This exploit uses two vulnerabilities to execute a command as an elevated user. The first (CVE-2019-1405) uses the UPnP Device Host Service to elevate to NT AUTHORITY\LOCAL SERVICE The second (CVE-2019-1322) leverages the Update Orchestrator Service to elevate from NT AUTHORITY\LOCAL SERVICE to NT AUTHORITY\SYSTEM.
- #GhostSec
Add Comment
Please, Sign In to add comment