info
discussion
exploit
solution
references
Microsoft Windows WMI Service Isolation Local Privilege Escalation Vulnerability
References:
Microsoft Windows Homepage
(Microsoft )
MS09-012: Fixing 'Token Kidnapping'
(Microsoft)
Security Implications of Windows Access Tokens â?? A Penetration Testerâ??s Guide
(MWR Info Security)
SVRD Blog: Service isolation explanation
(Microsoft)
Token Kidnapping Windows 2003 PoC exploit
(Cesar Cerrudo)
ANNOUNCE: Security Implications of Windows Access Tokens Whitepaper
(luke.jennings@mwrinfosecurity.com)
Token Kidnapping (Microsoft Security Advisory 951306) presentation available
(Cesar
)
ASA-2009-137 - MS09-012 Vulnerabilities in Windows Could Allow Elevation of Priv
(Avaya)
Microsoft Security Bulletin MS09-012
(Microsoft)
Token Kidnapping in action
(Argeniss)
Privacy Statement
Copyright 2010, SecurityFocus
