Help in NIPrint LPD-LPR Print Server 4.10 and previous versions executes Windows Explorer with SYSTEM privileges, which allows local users to gain privileges.
/*
\ remote exploit for NIPrint LPD-LPR Print Server (Version <= 410)
/
\ by xCrZx /BLack Sand Project/ /041103/
/
\ bug found by KF
/ successfully tested on Win XP 512600
/ PS#1 coded just for fun
\ PS#2 this exploit can be compiled under Win32 and *nix
*/
#ifdef _WIN32
#include <winsockh>
#include <windowsh>
#el ...