Nssm-2.24 Privilege Escalation Updated -

References and further research

: NSSM 2.24 may enter a crash and restart loop if run without administrator rights when privilege elevation is required, potentially leading to a Denial of Service (DoS) . nssm-2.24 privilege escalation

The "Non-Sucking Service Manager" () version 2.24 is frequently featured in cybersecurity "stories" or labs because it is a textbook example of how a helpful administrative tool can be turned into a vehicle for Local Privilege Escalation (LPE) on Windows systems . The Core Vulnerability References and further research : NSSM 2

Proofs-of-concept and tooling

: If a service created by NSSM has a path containing spaces and is not enclosed in quotation marks (e.g., C:\Program Files\My Service\nssm.exe nssm-2.24 privilege escalation

: It leaks thread handles when applications restart, which can lead to system instability over time.