Subscribe via feed.

Windows Object Manager Pathological Lookup EoP

Posted by deepcore on October 13, 2016 – 8:36 pm

When performing an object name lookup it’s possible exercise the worst case look up time for the object leading to a single lookup taking multiple minutes. This can prevent a process being terminated on logout which can be used to get access to other user sessions, especially on a terminal server leading to EoP.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »