Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2021-35448 PoC — Remote Mouse 处理逻辑错误漏洞

Source
https://github.com/deathflash1411/cve-2021-35448
Associated Vulnerability
Title:Remote Mouse 处理逻辑错误漏洞 (CVE-2021-35448)
Description:Emote Interactive Remote Mouse 3.008 on Windows allows attackers to execute arbitrary programs as Administrator by using the Image Transfer Folder feature to navigate to cmd.exe. It binds to local ports to listen for incoming connections.
Description
Local Privilege Escalation in Remote Mouse 3.008
Readme
# CVE-2021-35448

**Description:** Local Privilege Escalation in Remote Mouse 3.008

**Vulnerable App:** [Download](https://www.exploit-db.com/apps/4e06b0e24ad2dbf6fde0da11b77dd98d-RemoteMouse.exe)

**Exploit-DB:** [https://www.exploit-db.com/exploits/50047](https://www.exploit-db.com/exploits/50047)

**Proof Of Concept:**

- Open Remote Mouse from taskbar
- Go to Settings -> Image Transfer Folder
- Click "Change...", a Save As dialog box will appear
- Enter `C:\Windows\System32\cmd.exe` 
- Command Prompt will be opened with admin privileges

**Screenshots:**

![](https://i.imgur.com/vHacNUg.png)

![](https://i.imgur.com/i5csLKg.png)

![](https://i.imgur.com/9uh9atb.png)

![](https://i.imgur.com/eEb9y8u.png)

![](https://i.imgur.com/DfxaLEU.png)
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →