| タイトル | MECHREVO Control Console 1.0.2.70 Elevation Of Privilege |
|---|
| 説明 | The Mechanical Revolution Console service will load a non-existent DLL from the current directory with permission 'system', and it will start automatically. When GCUService. exe is run, it will search for csCAPI.dll in the current directory and load it onto the stack to run. However, cscapi.dll is not in the default GCUService. exe directory. You can place malicious csCAPi.dll in the GCUService. exe directory and exploit this vulnerability for privilege escalation. |
|---|
| ソース | ⚠️ https://www.yuque.com/ba1ma0-an29k/nnxoap/bhd5ckqugggmpttp?singleDoc# 《MECHREVO Control Console Has Privilege Escalation Vulnerability》 |
|---|
| ユーザー | Ba1_Ma0 (UID 60252) |
|---|
| 送信 | 2025年04月22日 06:15 (12 月 ago) |
|---|
| モデレーション | 2025年05月04日 20:28 (13 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 307376 [Mechrevo Control Console 1.0.2.70 GCUService csCAPI.dll 特権昇格] |
|---|
| ポイント | 20 |
|---|