ALL privileges
ALL is a group of privileges that enable their holders to control the system. It is comprised of the following privileges:
Privilege | Description |
---|---|
BYPASS | Disregard protection |
CMEXEC | Change to executive mode |
CMKRNL | Change to kernel mode |
IMPERSONATE | Create detached processes of arbitrary UIC |
DOWNGRADE | Write to a lower secrecy object or lower an object's classification |
LOG_IO | Issue logical I/O requests |
PFNMAP | Map to specific physical pages |
PHY_IO | Issue physical I/O requests |
SETPRV | Enable any privilege |
SHARE | Access devices allocated to other users |
SYSNAM | Insert system logical names in the name table |
SYSPRV | Access objects through the system protection field |
UPGRADE (privilege) | Write to a higher integrity object or raise an object's integrity level |