Important to realize that services can be passed arguments from a user when they are started. Any high-privileged service that can be controlled as a normal user is worth a peek. http://checksvc.py can help you find such services https://gist.github.com/wdormann/db533d84df57a70e9580a6a2127e33bb …https://twitter.com/iagox86/status/1055133524246679563 …
-
Show this thread
For example, here's a screenshot indicating that WebexService may be worth looking into because it's User-controlled, and high-privileged. Finding out whether the target service accepts parameters in a way that can be used to achieve privilege escalation is left as an exercise...pic.twitter.com/cMTy8BYDKD
10:24 AM - 24 Oct 2018
0 replies
3 retweets
5 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.