CMSTP - Arbitrary DLL execution locally and remotely and SCT for AppLocker Bypass with PoC Source Code
In Summary : CMSTP is a binary which is associated with the Microsoft Connection Manager Profile Installer. It accepts INF files which can...
https://updatesinfosec.blogspot.com/2018/05/cmstp-arbitrary-dll-execution-locally.html
In Summary :
CMSTP is a binary which is associated with the Microsoft Connection Manager Profile Installer. It accepts INF files which can be weaponised with malicious commands in order to execute arbitrary code in the form of scriptlets (SCT) and DLL. It is a trusted Microsoft binary which is located in the following two Windows directories [...]
kindly refer the following link as follow up :
https://ift.tt/2jMjJU3
CMSTP is a binary which is associated with the Microsoft Connection Manager Profile Installer. It accepts INF files which can be weaponised with malicious commands in order to execute arbitrary code in the form of scriptlets (SCT) and DLL. It is a trusted Microsoft binary which is located in the following two Windows directories [...]
kindly refer the following link as follow up :
https://ift.tt/2jMjJU3
