Apache CouchDB 2.0.0 Local Privilege Escalation

Posted by deepcore on December 6, 2016 – 6:45 am

Apache CouchDB sets weak file permissions potentially allowing ‘Standard’ Windows users to elevate privileges. The “nssm.exe” (Apache CouchDB) executable can be replaced by a ‘Standard’ non administrator user, allowing them to add a backdoor Administrator account once the “Apache CouchDB” service is restarted or system rebooted. As Apache CouchDB runs as LOCALSYSTEM, standard users can now execute arbitrary code with the privileges of the SYSTEM. Version 2.0.0 is affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« http://www.namkeaw.go.th/index.php GNU Netcat 0.7.1 Out-Of-Bounds Write »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Apache CouchDB 2.0.0 Local Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL