Remote Mouse GUI 3.008 – Local Privilege Escalation

• Exploit Database
• 39 阅读

• 作者： Salman Asad
  日期： 2021-06-21
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/50047/

• # Exploit Title: Remote Mouse GUI 3.008 - Local Privilege Escalation
  # Exploit Author: Salman Asad (@deathflash1411) a.k.a LeoBreaker
  # Date: 17.06.2021
  # Version: Remote Mouse 3.008
  # Tested on: Windows 10 Pro Version 21H1
  # Reference: https://deathflash1411.github.io/blog/cve-2021-35448
  # CVE: CVE-2021-35448
  
  Steps to reproduce:
  
  1. Open Remote Mouse from the system tray
  2. Go to "Settings"
  3. Click "Change..." in "Image Transfer Folder" section
  4. "Save As" prompt will appear
  5. Enter "C:\Windows\System32\cmd.exe" in the address bar
  6. A new command prompt is spawned with Administrator privileges