Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-14520

CheckTokenMembership returns wrong result when checking local admin against SECURITY_LOCAL_SYSTEM_RID

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Fix Version/s: 0.4.15
    • Component/s: Security
    • Labels:
      None

      Description

      There is a function in pg_service_test.c which checks if the process is running as a service. It was extracted from PostgreSQL code and modified a bit (to add debug outputs). CheckTokenMembership should set isMember to FALSE here (when running as local admin) but it is not.
      I think that using NtAccessCheck with some random access mask (or it is not random?) here is not a reliable way to do the check.

      Compiled exe file from this code is attached

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Fraizeraust George Bișoc
                Reporter:
                extravert34 extravert34
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: