CVE-2024-25376 PoC — Thesycon Software Solutions TUSBAudio 安全漏洞

Source

https://github.com/ewilded/CVE-2024-25376-POC

Associated Vulnerability

Title:Thesycon Software Solutions TUSBAudio 安全漏洞 (CVE-2024-25376)
Description:Thesycon Software Solutions TUSBAudio是Thesycon Software Solutions公司的一款设备驱动程序。 Thesycon Software Solutions TUSBAudio 5.68.0之前版本存在安全漏洞。本地攻击者利用该漏洞通过 msiexec.exe 修复模式执行任意代码。

Description

CVE-2024-25376 - Local Privilege Escalation in TUSBAudio

Readme

CVE-2024-25376 - Local Privilege Escalation in TUSBAudio (driver installers after v5.40.0 and before v5.68.0 are affected).

Reference:
https://www.thesycon.de/eng/usb_audiodriver.shtml#SecurityAdvisory

File Snapshot


 [4.0K]  /data/pocs/dd8991d52b3f17c0791bd14e9f99365f7710762d
├── [767K]  GOT_SYSTEM.PNG
├── [ 13K]  main.cpp
├── [3.2K]  raw.cpp
├── [ 203]  README.md
├── [ 230]  stdafx.h
├── [ 314]  targetver.h
├── [1.4K]  TLSETUPFX_LPE.sln
├── [6.7K]  TLSETUPFX_LPE.vcxproj
├── [1.2K]  TLSETUPFX_LPE.vcxproj.filters
└── [ 168]  TLSETUPFX_LPE.vcxproj.user

0 directories, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!