You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cscript.exe hijack
About this tag
The cscript.exe hijack tag covers discussions about privilege escalation attacks that abuse Windows Script Host's cscript.exe process, particularly in industrial control system (ICS) environments. A highlighted vulnerability is CVE-2025-7973 in Rockwell Automation's FactoryTalk ViewPoint, where a local attacker can escalate to SYSTEM privileges by exploiting Windows MSI repair behavior. This attack vector involves hijacking cscript.exe to execute malicious scripts with elevated permissions. The tag focuses on security advisories, CVSS scores, and mitigation steps for such hijack techniques, emphasizing the need for patching and vendor-recommended defenses in Windows-based ICS deployments.
A high-severity privilege-escalation flaw has been disclosed in Rockwell Automation’s FactoryTalk ViewPoint that allows a local attacker to escalate to SYSTEM privileges by abusing Windows MSI repair behavior; the issue (CVE-2025-7973) carries a CVSS v4 base score of 8.5 and affects FactoryTalk...