試験PT0-003 トピック2 問題246 スレッド
CompTIA PT0-003のリアル試験問題集
問題 #: 246
トピック #: 2
問題 #: 246
トピック #: 2
A penetration tester is researching a path to escalate privileges. While enumerating current user privileges, the tester observes the following output:
mathematica
Copy code
SeAssignPrimaryTokenPrivilege Disabled
SeIncreaseQuotaPrivilege Disabled
SeChangeNotifyPrivilege Enabled
SeManageVolumePrivilege Enabled
SeImpersonatePrivilege Enabled
SeCreateGlobalPrivilege Enabled
SeIncreaseWorkingSetPrivilege Disabled
Which of the following privileges should the tester use to achieve the goal?
mathematica
Copy code
SeAssignPrimaryTokenPrivilege Disabled
SeIncreaseQuotaPrivilege Disabled
SeChangeNotifyPrivilege Enabled
SeManageVolumePrivilege Enabled
SeImpersonatePrivilege Enabled
SeCreateGlobalPrivilege Enabled
SeIncreaseWorkingSetPrivilege Disabled
Which of the following privileges should the tester use to achieve the goal?
おすすめの解答:A 解答を投票する
ImpersonatePrivilege for Escalation:
The SeImpersonatePrivilege allows a process to impersonate a user after authentication. This is a common privilege used in token stealing or pass-the-token attacks to escalate privileges.
Exploits like Rotten Potato and Juicy Potato specifically target this privilege to elevate access to SYSTEM.
Why Not Other Options?
B (SeCreateGlobalPrivilege): This allows processes to create global objects but does not directly enable privilege escalation.
C (SeChangeNotifyPrivilege): This is related to bypassing traverse checking and does not facilitate privilege escalation.
D (SeManageVolumePrivilege): This allows volume maintenance but is not relevant for privilege escalation.
CompTIA Pentest+ Reference:
Domain 3.0 (Attacks and Exploits)
The SeImpersonatePrivilege allows a process to impersonate a user after authentication. This is a common privilege used in token stealing or pass-the-token attacks to escalate privileges.
Exploits like Rotten Potato and Juicy Potato specifically target this privilege to elevate access to SYSTEM.
Why Not Other Options?
B (SeCreateGlobalPrivilege): This allows processes to create global objects but does not directly enable privilege escalation.
C (SeChangeNotifyPrivilege): This is related to bypassing traverse checking and does not facilitate privilege escalation.
D (SeManageVolumePrivilege): This allows volume maintenance but is not relevant for privilege escalation.
CompTIA Pentest+ Reference:
Domain 3.0 (Attacks and Exploits)
Aoki 2026-07-07 10:27:25
コメント
他人の解答コメントを賛成するのも、その解答に一票を入れることになります。したがって、すでに同じ意見の投票コメントが存在する場合、新規コメントをする代わりに賛成することもできます。
コメントを通報する
コメント中
今すぐ 新規登録 / ログイン (無料です)。