Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
LiveCode v9.6.1 on Windows allows local, low-privileged users to gain privileges by creating a malicious "cmd.exe" in the folder of the vulnerable LiveCode application. If the application is using LiveCode's "shell()" function, it will attempt to search for "cmd.exe" in the folder of the current application and run the malicious "cmd.exe".
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LiveCode 安全漏洞
Vulnerability Description
LiveCode是LiveCode团队的一款多平台编程工具,可在iOS、Android、OS X、Windows 95到Windows 10、Raspberry Pi和多种 Unix 变体(包括 Linux、Solaris 和 BSD)上运行。 LiveCode v9.6.1存在安全漏洞,攻击者可利用该漏洞获得特权,创造一个恶意的%SYSTEMDRIVE%Course Software Material 18.0.1.9cmd.exe文件。
CVSS Information
N/A
Vulnerability Type
N/A