7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
11.1%
Name | msimpersonate |
---|---|
CVE | CVE-2004-0894 Exploit Pack |
VENDOR: Microsoft | |
MSADV: MS04-044 | |
Discovered By: Cesar Cerrudo | |
MSRC: http://www.microsoft.com/technet/security/bulletin/MS04-044.mspx | |
CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0894 | |
Usage: Will attempt to load a system token - use | |
getthreadsinfo to determine if this works. | |
Then you should be able to change into \\127.0.0.1\C$, etc | |
Sometimes itβs hard to tell which token is the system tokenβ¦ |
CVSS: 7.2