High Level processes such as services.exe and wininit.exe not possessing service creation privilege?

I'm currently probing my VM Windows Server 2008 RS with metasploit and learning how to use meterpreter effectively. Ideally, I want to use metsvc to install a persistent backdoor, but whenever I attempt this, meterpreter reports an inability to open the service manager and actually run the service. Thus I migrated to services.exe and checked my privileges with getpriv, which are as follow below:

SeAssignPrimaryTokenPrivilege SeAuditPrivilege SeBackupPrivilege SeChangeNotifyPrivilege SeCreateGlobalPrivilege SeCreatePermanentPrivilege SeCreateSymbolicLinkPrivilege SeDebugPrivilege SeImpersonatePrivilege SeIncreaseBasePriorityPrivilege SeIncreaseQuotaPrivilege SeLoadDriverPrivilege SeManageVolumePrivilege SeRestorePrivilege SeSecurityPrivilege SeShutdownPrivilege SeSystemEnvironmentPrivilege SeTakeOwnershipPrivilege SeTcbPrivilege SeUndockPrivilege 

In other words, a whole lot. Yet no SeCreateServicePrivilege! And, testing metsvc again, it still doesn't work. Does anyone have any idea why this particular privilege seems nonexistent on my vm (and yes, I've tried pretty much every single system-owned process on the machine)?

submitted by /u/helloworldus2
[link] [comments]

from hacking: security in practice https://ift.tt/UcnNIJe