漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
CVE-2025-6241
Vulnerability Description
LsiAgent.exe, a component of SysTrack from Lakeside Software, attempts to load several DLL files which are not present in the default installation. If a user-writable directory is present in the SYSTEM PATH environment variable, the user can write a malicious DLL to that directory with arbitrary code. This malicious DLL is executed in the context of NT AUTHORITY\SYSTEM upon service start or restart, due to the Windows default dynamic-link library search order, resulting in local elevation of privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lakeside Software SysTrack 安全漏洞
Vulnerability Description
Lakeside Software SysTrack是美国Lakeside Software公司的一个端点数据监控软件。 Lakeside Software SysTrack存在安全漏洞,该漏洞源于LsiAgent.exe组件尝试加载多个默认安装中不存在的DLL文件,可能导致本地权限提升。
CVSS Information
N/A
Vulnerability Type
N/A