macro_controller
Reputation: 1539
Can low integrity process create a named mutant object?
I'm trying to create a new named mutant from a low integrity process. This code works great on a high integrity process, but fails on low and medium integrity.
RtlInitUnicodeString(&Name, L"\\MutantName");
InitializeObjectAttributes(&Attr, &Name, OBJ_INHERIT | OBJ_OPENIF, NULL, NULL);
NTStatus = NtCreateMutant(&Mutant, MUTANT_ALL_ACCESS, &Attr, 0);
I'm getting NTStatus = ERROR_ACCESS_DENIED (0xc0000022).
Is it possible to create a mutant from a low integrity process? If yes - does someone know what am I doing wrong? Thanks!
Upvotes: 0
Views: 210
Answers (1)
RbMm
Reputation: 33754
A Low Integrity process can create objects only in an object directory that has a Low Mandatory label. The root object directory does not have this label. \BaseNamedObjects does, so you can create your mutant in there from a Low Integrity process:
RtlInitUnicodeString(&Name, L"\\BaseNamedObjects\\MutantName");
Upvotes: 2
Related Questions
- Does Mutex call a system call?
- Windows process with Untrusted Integrity level
- Interprocess synchronization barrier in Windows
- Does a mutex still need to be released if it times-out?
- ReadProcessMemory and WriteProcessMemory atomicity
- Win32 Named mutex not released when process crashes
- How integrity level of a process is determined?
- Why don't named .NET mutexes throw AbandonedMutexException when disposed?
- Is it a good idea to use the existence of a named mutex as an indicator?
- "Lock on the Kernel Object" on windows can make the entire system unresponsive?