Exploit Details
Basic Information
| Exploit Title | RDPGuard 9.9.9 – Privilege Escalation |
|---|---|
| Exploit ID | EDB-ID:52289 |
| Type | exploitdb |
| Published | 2025-05-13T00:00:00 |
| Modified | 2025-05-13T00:00:00 |
CVSS Information
| CVSS Score | 0.0 |
|---|---|
| Severity | NONE |
| Vector | NONE |
CVE Information
Exploit Description
Exploit Title: RDPGuard 9.9.9 – Privilege Escalation Discovered by: Ahmet Γmit…
Exploit Code
# Exploit Title: RDPGuard 9.9.9 – Privilege Escalation
# Discovered by: Ahmet Γmit BAYRAM
# Discovered Date: 09.05.2025
# Vendor Homepage: https://rdpguard.com
# Software Link: https://rdpguard.com/download.aspx
# Tested Version: 9.9.9 (latest)
# Tested on: Windows 10 (32bit)
# Discovered by: Ahmet Γmit BAYRAM
# Discovered Date: 09.05.2025
# Vendor Homepage: https://rdpguard.com
# Software Link: https://rdpguard.com/download.aspx
# Tested Version: 9.9.9 (latest)
# Tested on: Windows 10 (32bit)
# # # Steps to Reproduce # # #
# 1. Prepare a .bat file containing your reverse shell code.
# 2. Open RDPGuard.
# 3. Navigate to Tools > Custom Actions / Notifications.
# 4. Click the “Add” button.
# 5. Leave “Event” as “IP Blocked”.
# 6. Select “Execute Program” from the “Action” dropdown.
# 7. Under the “Program/script” field, select your prepared .bat file.
# 8. Set up your listener.
# 9. Click “Test Run”.
# 10. A reverse shell as NT AUTHORITY\SYSTEM is obtained!