seems to fail in impersonate local service

Question

seems to fail in impersonate local service

ricnar456 opened this issue 3 months ago · comments

error 0xc0000022 when tries to open the driver handle.

ricnar456 · Answer 1 · Mon May 20 2024 18:12:32 GMT+0800 (China Standard Time)

Is needed some special local service running in the machine? i have a lot of svchost local services running but it fails when tries ti impersonate them.

biscoito · Answer 2 · Wed May 22 2024 07:38:03 GMT+0800 (China Standard Time)

You only need to have the appid.sys service running in order for this to work. Please verify if your Windows version is older than the patch made by MSRC: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21338