[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PowerStrip < = 3.84 (pstrip.sys) Privilege Escalation Exploit
# Published : 2008-12-21
# Author : NT Internals
# Previous Title : CUPS < 1.3.8-4 (pstopdf filter) Privilege Escalation Exploit
# Next Title : Open Office.org 2.31 swriter Local Code Execution Exploit
////////////////////////////////////////////////////////////////////////////////////
// +----------------------------------------------------------------------------+ //
// | | //
// | EnTech Taiwan - http://www.entechtaiwan.com/ | //
// | | //
// | Affected Software: | //
// | PowerStrip <= 3.84 | //
// | | //
// | Affected Driver: | //
// | PowerStrip support NT kernel-mode driver - pstrip.sys <= 5.0.1.1 | //
// | | //
// | Local Privilege Escalation Exploit | //
// | For Educational Purposes Only ! | //
// | | //
// +----------------------------------------------------------------------------+ //
// | | //
// | NT Internals - http://www.ntinternals.org/ | //
// | alex ntinternals org | //
// | 20 December 2008 | //
// | | //
// | References: | //
// | Exploiting Common Flaws in Drivers | //
// | Ruben Santamarta - http://reversemode.com/ | //
// | | //
// +----------------------------------------------------------------------------+ //
////////////////////////////////////////////////////////////////////////////////////
Exploit:
http://www.ntinternals.org/ntiadv0810/PowerStrip_Exp.zip
http://exploit-db.com/sploits/2008-PowerStrip_Exp.zip
Advisory:
http://www.ntinternals.org/ntiadv0810/ntiadv0810.html
# www.Syue.com [2008-12-21]