Privilege escalation with CreateNamedPipe and Impersonation RRS feed

  • Question

  • Hi,


    I have been investigating on the privilege escalation vulnerability when we use methods of named pipe. This vulnerability is reported for Windows Server 2000 as per bulletin - Microsoft Security Bulletin MS00-053 -  Critical and Windows Server 2008 as per bulletin - Microsoft Security Bulletin MS10-059 - Important.

    The similar vulnerability is also reported for Windows Server 2012 in bulletin - Microsoft Security Bulletin MS15-050 - Important. I just want to make sure that, whether the vulnerability identified for Windows Server 2012 is also due to use of the CreateNamedPipe method and impersonation or due to some different reason. 

    If this vulnerability mentioned in the bulletin - Microsoft Security Bulletin MS15-050 - Important, is not related to Named Pipe, then is there other vulnerability with Named pipe which leads to privileges escalation?

    Thanks in advance.

    Thursday, March 10, 2016 8:50 AM