From 5ac6c919ddc0684f55366af3c70ae472f69831bd Mon Sep 17 00:00:00 2001
From: Nick Landers <monoxgas@yahoo.com>
Date: Tue, 13 Sep 2016 15:43:34 -0600
Subject: Service DACL false positive

---
 Privesc/PowerUp.ps1 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'Privesc')

diff --git a/Privesc/PowerUp.ps1 b/Privesc/PowerUp.ps1
index 977efda..c1b9072 100644
--- a/Privesc/PowerUp.ps1
+++ b/Privesc/PowerUp.ps1
@@ -1404,7 +1404,7 @@ function Test-ServiceDaclPermission {
                         else {
                             ForEach($TargetPermission in $TargetPermissions) {
                                 # check permissions || style
-                                if (($ServiceDacl.AccessRights -band $AccessMask[$TargetPermission]) -eq $AccessMask[$TargetPermission]) {
+                                if (($ServiceDacl.AceType -eq 'AccessAllowed') -and ($ServiceDacl.AccessRights -band $AccessMask[$TargetPermission]) -eq $AccessMask[$TargetPermission]) {
                                     Write-Verbose "Current user has '$TargetPermission' for $IndividualService"
                                     $TargetService
                                     break
-- 
cgit v1.2.3