Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Weak permissions on the "%PROGRAMDATA%\MSI\Dragon Center" folder in Dragon Center before 2.6.2003.2401, shipped with Micro-Star MSI Gaming laptops, allows local authenticated users to overwrite system files and gain escalated privileges. One attack method is to change the Recommended App binary within App.json. Another attack method is to use this part of %PROGRAMDATA% for mounting an RPC Control directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Micro Star Dragon Center 安全漏洞
Vulnerability Description
Micro Star Dragon Center是中国台湾微星科技(Micro Star)公司的一款用于管理控制MSI组件、桌面系统和外围设备的应用程序。 Micro Star Dragon Center 2.6.2003.2401版本(用在Micro-Star MSI Gaming laptops)的“C:%PROGRAMDATA%MSIDragon Center”文件夹存在安全漏洞,该漏洞源于程序使用弱ACL。本地攻击者可利用该漏洞覆盖系统文件,提升权限,绕过软件配置修改的控制保护并允许执行恶意软件,
CVSS Information
N/A
Vulnerability Type
N/A