Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-14520

CheckTokenMembership returns wrong result when checking local admin against SECURITY_LOCAL_SYSTEM_RID

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • 0.4.15
    • Security
    • None

    Description

      There is a function in pg_service_test.c which checks if the process is running as a service. It was extracted from PostgreSQL code and modified a bit (to add debug outputs). CheckTokenMembership should set isMember to FALSE here (when running as local admin) but it is not.
      I think that using NtAccessCheck with some random access mask (or it is not random?) here is not a reliable way to do the check.

      Compiled exe file from this code is attached

      Attachments

        1. pg_service_test.c
          2 kB
          extravert34

        Issue Links

          Activity

            People

              Fraizeraust George Bișoc
              extravert34 extravert34
              Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: