header-logo
Suggest Exploit
vendor:
Remote Mouse GUI
by:
Salman Asad (@deathflash1411) a.k.a LeoBreaker

Remote Mouse GUI 3.008 – Local Privilege Escalation

This exploit allows an attacker to escalate their privileges locally on the system by exploiting a vulnerability in Remote Mouse GUI 3.008. By following the steps mentioned, the attacker can spawn a new command prompt with Administrator privileges.

Mitigation:

The vendor should release a patch to fix this vulnerability. In the meantime, users can avoid this exploit by not running Remote Mouse with administrative privileges.
Source

Exploit-DB raw data:

# Exploit Title: Remote Mouse GUI 3.008 - Local Privilege Escalation
# Exploit Author: Salman Asad (@deathflash1411) a.k.a LeoBreaker
# Date: 17.06.2021
# Version: Remote Mouse 3.008
# Tested on: Windows 10 Pro Version 21H1
# Reference: https://deathflash1411.github.io/blog/cve-2021-35448
# CVE: CVE-2021-35448

Steps to reproduce:

1. Open Remote Mouse from the system tray
2. Go to "Settings"
3. Click "Change..." in "Image Transfer Folder" section
4. "Save As" prompt will appear
5. Enter "C:\Windows\System32\cmd.exe" in the address bar
6. A new command prompt is spawned with Administrator privileges