Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MDaemon本地特权提升漏洞
Vulnerability Description
Alt-N MDaemon是一款基于Windows的邮件服务程序。 MDaemon在打开文件时没有正确丢弃特权,本地攻击者可以利用这个漏洞提升特权。 攻击者可以通过如下方法提升特权: 1、点击任务栏的邮件图标,打开 Alt-N MDaemon Pro窗口。 2、打开文件,选择新建 3、文件类型选择全部类型。 4、找到%WINDIR%\System32\ 5、运行cmd.exe获得特权。
CVSS Information
N/A
Vulnerability Type
N/A