Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege Escalation in Boxstarter
Vulnerability Description
The Boxstarter installer before version 2.13.0 configures C:\ProgramData\Boxstarter to be in the system-wide PATH environment variable. However, this directory is writable by normal, unprivileged users. To exploit the vulnerability, place a DLL in this directory that a privileged service is looking for. For example, WptsExtensions.dll When Windows starts, it'll execute the code in DllMain() with SYSTEM privileges. Any unprivileged user can execute code with SYSTEM privileges. The issue is fixed in version 3.13.0
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
将资源暴露给错误范围
Vulnerability Title
Chocolatey Boxstarter 安全漏洞
Vulnerability Description
Chocolatey Boxstarter是美国chocolatey(Chocolatey)公司的一款适用于安装虚拟Windows环境的虚拟机管理软件。 Boxstarter installer 2.13.0之前版本存在安全漏洞,该漏洞源于将C:ProgramDataBoxstarter配置为在系统范围的PATH环境变量中。但是,该目录可由普通的、无特权的用户写入。要利用此漏洞,请将一个DLL放在特权服务正在查找的目录中。当Windows启动时,它将使用系统特权执行DllMain()中的代码。攻击者可利用
CVSS Information
N/A
Vulnerability Type
N/A