from Hacker News

Local Privilege Escalation via MSI Installer

by trustinmenowpls on 9/12/24, 8:14 PM with 6 comments

  • by byteknight on 9/12/24, 9:00 PM

    This is way too broad of a title.

    Title taken from their page:

    > Local Privilege Escalation via MSI installer in SoftMaker Office / FreeOffice

    I despise click bait.

  • by RajT88 on 9/13/24, 2:26 AM

    A lot of these types of exploits are out there because of the ability to run elevated (system) custom actions in the MSI.

    It is part of why MSFT says to vendors "Switch to MsiX".