| Titel | Mechrevo Control Center GX V2 5.56.51.48 Insecure .reg File Handler |
|---|
| Beschreibung | The Mechvero GX V2 Control Center installer is a signed and trusted binary that uses .reg files during installation for configuration. However, it does not validate the integrity or authenticity of these .reg files.
Since the installer runs with high integrity privileges, an attacker with write access can tamper with the .reg file to inject malicious registry entries or commands. This can lead to privilege escalation, persistent backdoors, or arbitrary code execution via the Windows Registry under NT AUTHORITY\SYSTEM.
Download Link:
https://driver.mechrevo.com/d.mechrevo.com/driver/MECHREVO2025/ControlCenter_5.56.51.48_Mechrevo_GX_V2.zip |
|---|
| Quelle | ⚠️ https://drive.proton.me/urls/7QYSEW6734#H3N4fQ3mw6gX |
|---|
| Benutzer | pipapupa (UID 87588) |
|---|
| Einreichung | 29.07.2025 18:57 (vor 9 Monaten) |
|---|
| Moderieren | 13.08.2025 20:51 (15 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 320029 [Mechrevo Control Center GX V2 5.56.51.48 reg File erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|