An attacker could exploit this vulnerability by creating a specially crafted configuration file and placing it in a directory that NSSM reads from. When NSSM reads the configuration file, it could execute the attacker's malicious code with elevated privileges.
: If the binary file executed by NSSM is located in a directory where a low-privileged user has "Write" or "Modify" permissions, the attacker can replace the legitimate binary with a malicious one (e.g., a reverse shell). When the service restarts, it executes the malicious binary with SYSTEM privileges.
Nssm224 Privilege Escalation Updated [repack] Direct
An attacker could exploit this vulnerability by creating a specially crafted configuration file and placing it in a directory that NSSM reads from. When NSSM reads the configuration file, it could execute the attacker's malicious code with elevated privileges.
: If the binary file executed by NSSM is located in a directory where a low-privileged user has "Write" or "Modify" permissions, the attacker can replace the legitimate binary with a malicious one (e.g., a reverse shell). When the service restarts, it executes the malicious binary with SYSTEM privileges. nssm224 privilege escalation updated