LocalPotato - Tryhackme Writeup-Walkthrough -By Md Amiruddin
Conveniently, on February 13, another privilege escalation PoC was published by BlackArrowSec that abuses the StorSvc service, allowing an attacker to execute code as SYSTEM as long as they can write a DLL file to any directory in the PATH. ... Instead, the attacker will launch a rogue client that simultaneously initiates a connection against the local SMB Server (Windows File Sharing) with its current unprivileged credentials. CVEs: CVE-2023-21746, CVE-2020-7315 Malware: TSVIPSrv.dll, TSVIPSrv . dll [View Article](https://mdamiruddin.medium.com/localpotato-tryhackme-writeup-walkthrough-by-md-amiruddin-a2d93747d5ad)