Forum Discussion
kevinh
Bronze II
3 months agoCVE-2019-1388 (Windows Priv Esc UAC Bypass) question 4
after transferring the certification of the executable given online. and changing the name and saving the file, I cant seem to change it the whoami output to NT Authority. should I be targeting a d...
- 3 months ago
then you must have done something wrong :)
I've made a short video for you with the walkthru:
https://youtu.be/2Iq-JynopFo
steven
Silver II
3 months agouse the target on the desktop, just follow the instructions:
- Right click the .exe file of the desktop and run as administrator
- Click ‘show more details’
- Click ‘show information about the publisher’s certificate'
- Click the ‘issued by’ hyperlink ---> the browser will be opened in the background
- Click ‘OK’
- Click ‘no’ on the UAC window
now in the browser: - Once the page fails to load, click the cog icon in the top right
- Select File → Save As
- Accept the warning message by clicking ‘OK’
- In File, name type c:\windows\system32\*.*
- Locate cmd.exe and right-click → Open
then you should have a window open with system rights: