Microsoft Windows NtImpersonateAnonymousToken LPAC To Non-LPAC Privilege Escalation

On Microsoft Windows, when impersonating the anonymous token in an LPAC the WIN://NOAPPALLPKG security attribute is ignored leading to impersonating a non-LPAC token leading to privilege escalation.

MD5 | 8c8cfa8d06fb3178fe47edd96393a118

Download

Source: packetstormsecurity.com