Wednesday, May 5, 2010

xp_cmdshell without sysadmin privileges

1. Create a window login (for ex : Test\kalyan)
2. Create window authentican login in the SQL Server
3. Execute the following command in the master database
EXEC sp_xp_cmdshell_proxy_account 'Test\kalyan', 'k@!y@n'
4. After than login into SQL Server using windows authentication and try execute exec xp_cmdshell 'dir'

No comments: