module

MS16-016 mrxdav.sys WebDav Local Privilege Escalation

Try Surface Command
Back to search
Disclosed
Feb 9, 2016
Created
May 30, 2018

Description

This module exploits the vulnerability in mrxdav.sys described by MS16-016. The module will spawn
a process on the target system and elevate its privileges to NT AUTHORITY\SYSTEM before executing
the specified payload within the context of the elevated process.

Authors

Tamas Koczka
William Webb [email protected]

Platform

Windows

Architectures

x86

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use exploit/windows/local/ms16_016_webdav
    msf exploit(ms16_016_webdav) > show targets
        ...targets...
    msf exploit(ms16_016_webdav) > set TARGET < target-id >
    msf exploit(ms16_016_webdav) > show options
        ...show and set options...
    msf exploit(ms16_016_webdav) > exploit
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today