Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. An attacker can put malicious code in a Trojan horse GalaxyClientService.exe. After that, the attacker can re-start this service as an unprivileged user to escalate his/her privileges and run commands on the machine with SYSTEM rights.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GOG Galaxy 安全漏洞
Vulnerability Description
GOG Galaxy是波兰GOG公司的一款游戏客户端程序。该程序用于安装、启动和更新游戏。 GOG Galaxy 1.2.67版本中的GalaxyClientService.exe文件存在安全漏洞。攻击者可利用该漏洞提升权限并以SYSTEM权限执行命令。
CVSS Information
N/A
Vulnerability Type
N/A