In this recipe, we look at an attacker can misconfigured software installations and escalate privileges on the application. This is one of the classic examples where the installed setup is configured without considering the user's rights over the files and folders of the application.
For this recipe, we will need to install an called WinSMS. This can be downloaded from https://www.exploit-db.com/exploits/40375/ and can be installed on any Windows machine running XP, Vista, 7, or 10. For demo purposes, we will be using Windows 7. Apart from this, we will need our Kali system up and running to take the reverse shell.