header-logo
Suggest Exploit
vendor:
Cain & Abel
by:
Aryan Chehreghani
7.5
CVSS
HIGH
Unquoted Service Path
428
CWE
Product Name: Cain & Abel
Affected Version From: 4.9.56
Affected Version To: 4.9.56
Patch Exists: NO
Related CWE:
CPE: cain-and-abel:4.9.56
Metasploit:
Other Scripts:
Platforms Tested: Windows 10 x64
2022

Cain & Abel 4.9.56 – Unquoted Service Path

The Cain & Abel version 4.9.56 software on Windows 10 x64 is vulnerable to an unquoted service path vulnerability. The 'Abel' service has a binary path name that is not properly quoted, which could allow an attacker to escalate privileges and execute arbitrary code with the permissions of the LocalSystem account.

Mitigation:

To mitigate this vulnerability, the vendor should update the software to quote the binary path name properly. Users can also manually quote the binary path name to prevent exploitation.
Source

Exploit-DB raw data:

# Exploit Title: Cain & Abel 4.9.56 - Unquoted Service Path
# Exploit Author: Aryan Chehreghani
# Date: 2022-02-08
# Software Link: https://www.malavida.com/en/soft/cain-and-abel
# Version: 4.9.56
# Tested on: Windows 10 x64

# PoC

SERVICE_NAME: Abel
        TYPE               : 110  WIN32_OWN_PROCESS (interactive)
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 1   NORMAL
        BINARY_PATH_NAME   : C:\Program Files (x86)\Cain\Abel64.exe
        LOAD_ORDER_GROUP   :
        TAG                : 0
        DISPLAY_NAME       : Abel
        DEPENDENCIES       :
        SERVICE_START_NAME : LocalSystem

Navigation

Suggest Exploit

Services By CQR