Sysinternals PsTools prior to 2.05, including (1) PsExec prior to 1.54, (2) PsGetsid prior to 1.41, (3) PsInfo prior to 1.61, (4) PsKill prior to 1.03, (5) PsList prior to 1.26, (6) PsLoglist prior to 2.51, (7) PsPasswd prior to 1.21, (8) PsService prior to 2.12, (9) PsSuspend prior to 1.05, and (10) PsShutdown prior to 2.32, does not properly disconnect from remote IPC$ and ADMIN$ shares, which allows local users to access the shares with elevated privileges by using the existing share mapping.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft psexec |
||
microsoft psgetsid |
||
microsoft psshutdown |
||
microsoft pssuspend |
||
microsoft pslist |
||
microsoft psloglist |
||
microsoft pspasswd |
||
microsoft psservice |
||
microsoft psinfo |
||
microsoft pskill |
||
microsoft sysinternals pstools |