Yes, that is a way to use the exploit but if the virus was packaged in the installer it could just use the installer elevation to make a mess.I think that's one way for people to implement virus program to the target computer.
Thesycon provide the driver (virus free)==> someone can repackage the driver package with additional virus program ===> then the included MSI installer (virus free) will kick off the virus program got packaged in the driver package. Am I correct?
Anyway, thanks for the link, the new driver fixed the clicking noise problem with my M300SE. Cheers!
p.s. I would tell if my computer got any issue because of the "security issue". LOL
An easier way would be some standard program that does not require elevation and that seems fine but has a sub routine to check if the compromised MSI installer exists in the PC and use the exploit to run elevated code.
Guess the drivers have fixes, too bad there is no changelog.