Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Microsoft Windows 2000 Network DDE Escalated Privileges Vulnerability

Microsoft Windows 2000 Network DDE Escalated Privileges Vulnerability

by platon on February 9th, 2001 Network DDE (Dynamic Data Exchange) allows processes to communicate information across a network via a trusted share...


An IPC window (Network DDE Agent) enables communication between processes. Using a command function such as WM_COPYDATA, it is possible for a message to be sent through the Net DDE Agent to a trusted share with a process associated with that share. Unfortunately NetDDE Agent runs in the LOCAL SYSTEM context, therefore a local user can specify arbitrary code to be run at SYSTEM privileges.

[Exploit provided by @stake] [Homepage]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »