GitHub

cve_2022_26904_superprofile.rb

UAC prompt to cause this DLL to be loaded and executed by ProfSrv as the NT AUTHORITY\SYSTEM user. Note that this bug was originally identified as CVE-2021-34484 and was subsequently patched a second ...
GitHub

Compile-Time Obfuscation: Reflective Loader Extensions

Metsrv and all the extension share the same reflective loading logic. Any DLL we produce include the ReflectiveLoader function, a position-indipendend helper function that navigate the DLL allocated ...