vendor:
ActFax
by:
2023
they can inject their own malicious ""ActSrvNT.exe"" file. Then the ActiveFaxServiceNT Service can be restarted to privilege escalation."
CVSS
7.5
Unquoted Path Services
CWE
Product Name: ActFax
Affected Version From: NO
Affected Version To: Version 10.10, Build 0551 (2023-02-01)
Patch Exists: Ensure that all services have their paths quoted and that all services are running with the least privileges necessary.
Related CWE: Birkan ALHAN
CPE: Version 10.10, Build 0551 (2023-02-01)
Metasploit:
https://www.exploit-db.com/raw/51332
Platforms Tested: ActFax
HIGH
ActFax 10.10 – Unquoted Path Services
If the attacker has taken over the system and the taken user has write privileges to the "C:Program FilesActiveFax" folder or "C:"
Mitigation:
22
