Skip to content
No description, website, or topics provided.
Branch: master
Clone or download
Latest commit ad34546 Aug 9, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information. Updated readme Aug 9, 2019
SteamEoP.ps1 Update SteamEoP.ps1 Aug 8, 2019


Command execution as NT_Authority\System

Works without admin privileges

Original credits:

For complete cleanup, at the end: regln-x64.exe -d HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Valve\Steam\Apps\PrivEsc

You can download from here:

Additional random info

There is more blatant violation:

  1. Log on as non-admin on a box with steam
  2. Do not start steam or any game
  3. cat %system32%\calc.exe > %programfiles%\steam\bin\steamservice.exe
  4. Reboot
  5. Log on, start steam
  6. BAM! Now you have calc.exe (attempted to) run as System with highest local privileges

Have you reported this to the vendor or whatever channels are required to get a CVE?

From 2015:

You can’t perform that action at this time.