vendor:
Remote Mouse GUI
by:
Salman Asad (@deathflash1411) a.k.a LeoBreaker
N/A
CVSS
HIGH
Local Privilege Escalation
35448
CWE
Product Name: Remote Mouse GUI
Affected Version From: Remote Mouse 3.008
Affected Version To: Remote Mouse 3.008
Patch Exists: NO
Related CWE: CVE-2021-35448
CPE: a:remote_mouse:remote_mouse:3.008
Metasploit:
https://www.rapid7.com/db/vulnerabilities/oracle_linux-cve-2020-35448/, https://www.rapid7.com/db/vulnerabilities/alma_linux-cve-2020-35448/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2020-35448/, https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-2-cve-2020-35448/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2020-35448/
Other Scripts:
https://www.infosecmatter.com/nessus-plugin-library/?id=157479, https://www.infosecmatter.com/nessus-plugin-library/?id=155155, https://www.infosecmatter.com/nessus-plugin-library/?id=155362, https://www.infosecmatter.com/nessus-plugin-library/?id=154921, https://www.infosecmatter.com/nessus-plugin-library/?id=154861, https://www.infosecmatter.com/nessus-plugin-library/?id=157002
Platforms Tested: Windows 10 Pro Version 21H1
2021
Remote Mouse GUI 3.008 – Local Privilege Escalation
This exploit allows an attacker to escalate their privileges locally on the system by exploiting a vulnerability in Remote Mouse GUI 3.008. By following the steps mentioned, the attacker can spawn a new command prompt with Administrator privileges.
Mitigation:
The vendor should release a patch to fix this vulnerability. In the meantime, users can avoid this exploit by not running Remote Mouse with administrative privileges.