Getadmin attack exploits a hole that grants a non-admin user debug-level access on a system service - from here local Admin rights are gained. This is purported to work on NT 3.51, NT 4.0 and the beta release of NT 5.0.
destructive program [F-Prot]Exploit-Sechole trojan [McAfee]Trojan Horse [Panda]Trojan.Win32.SecholeTrojan.Win32.Sechole [Kaspersky]Trojan.Win32.Sehole.a [Kaspersky]Win32.Sehole [Computer Associates]Win32/Sehole!Trojan [Computer Associates]
sechole.exe
admindll.dll