| Titel | MECHREVO Control Console 1.0.2.70 Elevation Of Privilege |
|---|
| Beschreibung | The Mechanical Revolution Console service will load a non-existent DLL from the current directory with permission 'system', and it will start automatically. When GCUService. exe is run, it will search for csCAPI.dll in the current directory and load it onto the stack to run. However, cscapi.dll is not in the default GCUService. exe directory. You can place malicious csCAPi.dll in the GCUService. exe directory and exploit this vulnerability for privilege escalation. |
|---|
| Quelle | ⚠️ https://www.yuque.com/ba1ma0-an29k/nnxoap/bhd5ckqugggmpttp?singleDoc# 《MECHREVO Control Console Has Privilege Escalation Vulnerability》 |
|---|
| Benutzer | Ba1_Ma0 (UID 60252) |
|---|
| Einreichung | 22.04.2025 06:15 (vor 12 Monaten) |
|---|
| Moderieren | 04.05.2025 20:28 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 307376 [Mechrevo Control Console 1.0.2.70 GCUService csCAPI.dll erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|