Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.107303
Kategorie:Windows
Titel:Microsoft Windows Unquoted Path Vulnerability
Zusammenfassung:The script tries to detect Windows 'Uninstall' registry entries and 'Services' using an; unquoted path containing at least one whitespace.
Beschreibung:Summary:
The script tries to detect Windows 'Uninstall' registry entries and 'Services' using an
unquoted path containing at least one whitespace.

Vulnerability Insight:
If the path contains spaces and is not surrounded by quotation marks, the Windows API has to guess where to find
the referenced program. If e.g. a service is using the following unquoted path:

C:\Program Files\Folder\service.exe

then a start of the service would first try to run:

C:\Program.exe

and if not found:

C:\Program Files\Folder\service.exe

afterwards. In this example the behavior allows a local attacker with low privileges and write permissions on C:\ to place a malicious Program.exe which is then
executed on a service/host restart or during the uninstallation of a software.

NOTE: Currently only 'Services' using an unquoted path are reported as a vulnerability. The 'Uninstall' vulnerability requires an Administrator / User
to actively uninstall the affected software to trigger this vulnerability.

Vulnerability Impact:
A local attacker could gain elevated privileges by inserting an executable file in the path of the affected service or uninstall entry.

Affected Software/OS:
Software installing an 'Uninstall' registry entry or 'Service' on Microsoft Windows using an unquoted path containing at least one whitespace.

Solution:
Either put the listed vulnerable paths in quotation by manually using the onboard Registry editor or contact your vendor to get an update
for the specified software that fixes this vulnerability.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2013-1609
BugTraq ID: 58617
http://www.securityfocus.com/bid/58617
Common Vulnerability Exposure (CVE) ID: CVE-2014-0759
http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01
Common Vulnerability Exposure (CVE) ID: CVE-2014-5455
http://www.exploit-db.com/exploits/34037
HPdes Security Advisory: HPSBGN3551
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05325943
http://packetstormsecurity.com/files/127439/OpenVPN-Private-Tunnel-Privilege-Escalation.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5192.php
https://github.com/CVEProject/cvelist/pull/3909
https://github.com/CVEProject/cvelist/pull/3909/commits/ace34f1cf94602f31760d3eb7ae68e17df8f914d
http://osvdb.org/show/osvdb/109007
Common Vulnerability Exposure (CVE) ID: CVE-2018-6321
http://seclists.org/fulldisclosure/2018/Mar/25
Common Vulnerability Exposure (CVE) ID: CVE-2018-6016
http://seclists.org/fulldisclosure/2018/Mar/21
Common Vulnerability Exposure (CVE) ID: CVE-2018-6384
https://www.on-x.com/sites/default/files/on-x_-_security_advisory_-_nsclient_-_cve-2018-6384.pdf
Common Vulnerability Exposure (CVE) ID: CVE-2016-6803
BugTraq ID: 94418
http://www.securityfocus.com/bid/94418
http://www.securitytracker.com/id/1037015
Common Vulnerability Exposure (CVE) ID: CVE-2017-9644
BugTraq ID: 100454
http://www.securityfocus.com/bid/100454
https://www.exploit-db.com/exploits/42542/
https://ics-cert.us-cert.gov/advisories/ICSA-17-234-01
Common Vulnerability Exposure (CVE) ID: CVE-2017-9247
Common Vulnerability Exposure (CVE) ID: CVE-2017-3005
BugTraq ID: 97553
http://www.securityfocus.com/bid/97553
http://www.securitytracker.com/id/1038229
Common Vulnerability Exposure (CVE) ID: CVE-2017-5873
Common Vulnerability Exposure (CVE) ID: CVE-2016-8769
BugTraq ID: 94403
http://www.securityfocus.com/bid/94403
https://www.exploit-db.com/exploits/40807/
http://www.security-geek.in/2017/02/07/0day-discovery-system-level-access-by-privilege-escalation-of-huawei-manufactured-airtel-photon-dongles/
Common Vulnerability Exposure (CVE) ID: CVE-2016-9356
BugTraq ID: 94891
http://www.securityfocus.com/bid/94891
https://ics-cert.us-cert.gov/advisories/ICSA-16-348-02
Common Vulnerability Exposure (CVE) ID: CVE-2016-7165
BugTraq ID: 94158
http://www.securityfocus.com/bid/94158
http://securityaffairs.co/wordpress/53266/security/cve-2016-7165-siemens.html
https://ics-cert.us-cert.gov/advisories/ICSA-16-313-02
Common Vulnerability Exposure (CVE) ID: CVE-2012-4350
BugTraq ID: 56915
http://www.securityfocus.com/bid/56915
http://www.securitytracker.com/id?1027874
Common Vulnerability Exposure (CVE) ID: CVE-2013-1092
Common Vulnerability Exposure (CVE) ID: CVE-2013-2176
RedHat Security Advisories: RHSA-2013:1122
http://rhn.redhat.com/errata/RHSA-2013-1122.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-1610
BugTraq ID: 61489
http://www.securityfocus.com/bid/61489
Common Vulnerability Exposure (CVE) ID: CVE-2013-2231
https://bugzilla.redhat.com/show_bug.cgi?id=980757
RedHat Security Advisories: RHSA-2013:1100
http://rhn.redhat.com/errata/RHSA-2013-1100.html
RedHat Security Advisories: RHSA-2013:1101
http://rhn.redhat.com/errata/RHSA-2013-1101.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-6182
BugTraq ID: 64520
http://www.securityfocus.com/bid/64520
Bugtraq: 20131224 ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2013-12/0139.html
http://osvdb.org/101430
http://www.securitytracker.com/id/1029536
Common Vulnerability Exposure (CVE) ID: CVE-2013-2151
BugTraq ID: 60473
http://www.securityfocus.com/bid/60473
RedHat Security Advisories: RHSA-2013:0925
http://rhn.redhat.com/errata/RHSA-2013-0925.html
XForce ISS Database: enterprise-cve20132151-priv-esc(84868)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84868
Common Vulnerability Exposure (CVE) ID: CVE-2013-2152
BugTraq ID: 60475
http://www.securityfocus.com/bid/60475
https://bugzilla.redhat.com/show_bug.cgi?id=971172
RedHat Security Advisories: RHSA-2013:0924
http://rhn.redhat.com/errata/RHSA-2013-0924.html
XForce ISS Database: enterprise-cve20132152-priv-esc(84866)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84866
Common Vulnerability Exposure (CVE) ID: CVE-2013-5011
BugTraq ID: 64130
http://www.securityfocus.com/bid/64130
XForce ISS Database: symantec-endpoint-cve20135011-priv-esc(90226)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90226
Common Vulnerability Exposure (CVE) ID: CVE-2009-2761
http://archives.neohapsis.com/archives/bugtraq/2009-01/0146.html
http://blog.zoller.lu/2009/01/tzo-2009-2-avira-antivir-priviledge.html
http://www.osvdb.org/55647
http://www.vupen.com/english/advisories/2008/3130
XForce ISS Database: avira-createprocess-privilege-escalation(46568)
https://exchange.xforce.ibmcloud.com/vulnerabilities/46568
Common Vulnerability Exposure (CVE) ID: CVE-2014-4634
Bugtraq: 20141230 ESA-2014-179: EMC Replication Manager and EMC AppSync Unquoted Service Path Enumeration Vulnerability (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2014-12/0170.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-0884
CERT/CC vulnerability note: VU#632140
http://www.kb.cert.org/vuls/id/632140
http://jvn.jp/vu/JVNVU99205169/index.html
http://www.securitytracker.com/id/1031825
Common Vulnerability Exposure (CVE) ID: CVE-2015-2789
BugTraq ID: 73432
http://www.securityfocus.com/bid/73432
http://www.exploit-db.com/exploits/36390
http://packetstormsecurity.com/files/130840/Foxit-Reader-7.0.6.1126-Privilege-Escalation.html
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5235.php
http://www.securitytracker.com/id/1031879
Common Vulnerability Exposure (CVE) ID: CVE-2015-1484
BugTraq ID: 73925
http://www.securityfocus.com/bid/73925
http://www.securitytracker.com/id/1032133
Common Vulnerability Exposure (CVE) ID: CVE-2015-3987
BugTraq ID: 74685
http://www.securityfocus.com/bid/74685
http://www.securitytracker.com/id/1032244
Common Vulnerability Exposure (CVE) ID: CVE-2015-4173
Bugtraq: 20150824 Dell SonicWall NetExtender Unquoted Autorun Privilege Escalation (Google Search)
http://www.securityfocus.com/archive/1/536303/100/0/threaded
http://packetstormsecurity.com/files/133302/Dell-SonicWall-NetExtender-7.5.215-Privilege-Escalation.html
http://www.securitytracker.com/id/1033417
Common Vulnerability Exposure (CVE) ID: CVE-2014-9646
http://security.gentoo.org/glsa/glsa-201502-13.xml
Common Vulnerability Exposure (CVE) ID: CVE-2015-7866
HPdes Security Advisory: HPSBHF03545
https://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04971867
http://www.securitytracker.com/id/1034175
Common Vulnerability Exposure (CVE) ID: CVE-2015-8156
BugTraq ID: 90050
http://www.securityfocus.com/bid/90050
Common Vulnerability Exposure (CVE) ID: CVE-2016-4158
Common Vulnerability Exposure (CVE) ID: CVE-2016-5793
BugTraq ID: 93046
http://www.securityfocus.com/bid/93046
https://ics-cert.us-cert.gov/advisories/ICSA-16-264-01
Common Vulnerability Exposure (CVE) ID: CVE-2016-6935
BugTraq ID: 93489
http://www.securityfocus.com/bid/93489
Common Vulnerability Exposure (CVE) ID: CVE-2017-3757
Common Vulnerability Exposure (CVE) ID: CVE-2017-3756
BugTraq ID: 100305
http://www.securityfocus.com/bid/100305
Common Vulnerability Exposure (CVE) ID: CVE-2017-3751
Common Vulnerability Exposure (CVE) ID: CVE-2017-6005
http://justpentest.blogspot.in/2017/07/dell-unquoted-service-path-local.html
Common Vulnerability Exposure (CVE) ID: CVE-2017-7180
https://www.exploit-db.com/exploits/42141/
Common Vulnerability Exposure (CVE) ID: CVE-2016-8225
BugTraq ID: 95842
http://www.securityfocus.com/bid/95842
Common Vulnerability Exposure (CVE) ID: CVE-2016-8102
BugTraq ID: 95010
http://www.securityfocus.com/bid/95010
Common Vulnerability Exposure (CVE) ID: CVE-2016-3161
BugTraq ID: 93251
http://www.securityfocus.com/bid/93251
Common Vulnerability Exposure (CVE) ID: CVE-2016-5852
Common Vulnerability Exposure (CVE) ID: CVE-2013-0513
XForce ISS Database: appscan-svc-path-priv-esc(82594)
https://exchange.xforce.ibmcloud.com/vulnerabilities/82594
Common Vulnerability Exposure (CVE) ID: CVE-2018-2406
BugTraq ID: 103719
http://www.securityfocus.com/bid/103719
https://launchpad.support.sap.com/#/notes/2560132
Common Vulnerability Exposure (CVE) ID: CVE-2018-5470
BugTraq ID: 103182
http://www.securityfocus.com/bid/103182
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
Common Vulnerability Exposure (CVE) ID: CVE-2015-8988
Common Vulnerability Exposure (CVE) ID: CVE-2018-0594
BugTraq ID: 104563
http://www.securityfocus.com/bid/104563
http://jvn.jp/en/jp/JVN91151862/index.html
https://blogs.technet.microsoft.com/srd/2018/04/04/triaging-a-dll-planting-vulnerability/
Common Vulnerability Exposure (CVE) ID: CVE-2018-0595
CopyrightCopyright (C) 2018 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.