Namedpipe impersonation Attacks
Blog :ethical hacking
Date: 12/9/2011 7:24:00 PM
Privilege escalation through namedpipe impersonation attack was a real issue back in 2000 when a flaw in the service control manager allowed any user logged onto a machine to steal the identify of SYSTEM. We haven't heard a lot about this topic since then, is it still an issue?
First of all, let's talk about the problem.
When a process creates a namedpipe server, and a client connects