Windows Subsystem for Linux

Overview

WSL allows a user to run Linux on top on the Windows system making it a... subsystem. However, with this comes vulnerabilities like the ability to create a elevated bind shell, with root privileges, to the Windows machine on any port.

Windows - Privilege Escalation - Internal All The Thingsswisskyrepo.github.io

Escalation via WSL

where /R C:\Windows bash.exe
where /R C:\Windows wsl.exe

bash.exe
python -c 'import pty;pty.spawn("/bin/bash")';

Check the history for easy wins

Previousgetsystem NextCVE-2019-1388