[local] RDPGuard 9.9.9 - Privilege Escalation
RDPGuard 9.9.9 存在权限提升漏洞。通过创建包含反向 shell 的 .bat 文件并配置自定义动作,在 IP 被阻止时执行该脚本,可获取 NT AUTHORITY\SYSTEM 权限。 2025-5-13 00:0:0 Author: www.exploit-db.com(查看原文) 阅读量:4 收藏
RDPGuard 9.9.9 存在权限提升漏洞。通过创建包含反向 shell 的 .bat 文件并配置自定义动作,在 IP 被阻止时执行该脚本,可获取 NT AUTHORITY\SYSTEM 权限。 2025-5-13 00:0:0 Author: www.exploit-db.com(查看原文) 阅读量:4 收藏
# Exploit Title: RDPGuard 9.9.9 - Privilege Escalation
# Discovered by: Ahmet Ümit BAYRAM
# Discovered Date: 09.05.2025
# Vendor Homepage: https://rdpguard.com
# Software Link: https://rdpguard.com/download.aspx
# Tested Version: 9.9.9 (latest)
# Tested on: Windows 10 (32bit)
# # # Steps to Reproduce # # #
# 1. Prepare a .bat file containing your reverse shell code.
# 2. Open RDPGuard.
# 3. Navigate to Tools > Custom Actions / Notifications.
# 4. Click the "Add" button.
# 5. Leave "Event" as "IP Blocked".
# 6. Select "Execute Program" from the "Action" dropdown.
# 7. Under the "Program/script" field, select your prepared .bat file.
# 8. Set up your listener.
# 9. Click "Test Run".
# 10. A reverse shell as NT AUTHORITY\SYSTEM is obtained!
文章来源: https://www.exploit-db.com/exploits/52289
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh