Weak service permissions TL;DR: SC ACL grants Modify on a SYSTEM-running service — change the binary, restart, profit. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References TODO