header-logo
Suggest Exploit
vendor:
HomeGuard Pro
by:
boku
5.5
CVSS
MEDIUM
Insecure Folder Permissions
732
CWE
Product Name: HomeGuard Pro
Affected Version From: 9.3.2001
Affected Version To: 9.3.2001
Patch Exists: NO
Related CWE:
CPE: a:veridium:homeguard_pro:9.3.1
Metasploit:
Other Scripts:
Platforms Tested: Windows 10 (32-bit)
2020

HomeGuard Pro 9.3.1 – Insecure Folder Permissions

The HomeGuard Pro version 9.3.1 has insecure folder permissions which allows BUILTINUsers to have full control over the 'C:Program FilesHomeGuard Pro' folder. Additionally, the files and services within the folder also have insecure permissions, allowing BUILTINUsers to have full control over them.

Mitigation:

The vendor should fix the folder and file/service permissions to restrict access only to authorized users. Users should also ensure that they have the latest version of HomeGuard Pro installed to mitigate this vulnerability.
Source

Exploit-DB raw data:

# Exploit Title: HomeGuard Pro 9.3.1 - Insecure Folder Permissions
# Exploit Author: boku
# Date: 2020-02-13
# Vendor Homepage: https://veridium.net
# Software Link: https://veridium.net/files_u/hg-pro/exe/HomeGuardPro-Setup.exe
# Version 9.3.1
# Tested On: Windows 10 (32-bit)

# HomeGuard Pro v9.3.1 - Unquoted Service Path + Insecure Folder/File/Service Permissions

## Service Information (Unquoted Service Path)
C:\>wmic service get Name,PathName,StartMode,StartName | findstr /v "C:\Windows" | findstr /i /v """
Name            PathName                                       StartMode    StartName
HG52 AM VI      C:\Program Files\HomeGuard Pro\vglset.exe      Auto         LocalSystem
HG52 AMC        C:\Program Files\HomeGuard Pro\vglsetw.exe     Auto         LocalSystem
HG52 AM REM     C:\Program Files\HomeGuard Pro\vglrem.exe      Auto         LocalSystem
HG52 AM SRV     C:\Program Files\HomeGuard Pro\vglserv.exe     Auto         LocalSystem

## Insecure Folder Permission
C:\>icacls "C:\Program Files\HomeGuard Pro" | findstr /i "Users"
C:\Program Files\HomeGuard Pro               BUILTIN\Users:(F)

## Insecure File/Service Permission
C:\>icacls "C:\Program Files\HomeGuard Pro\VGL*" | findstr /i "Users"
C:\Program Files\HomeGuard Pro\vglrem.exe    BUILTIN\Users:(I)(F)
C:\Program Files\HomeGuard Pro\VGLSERV.EXE   BUILTIN\Users:(I)(F)
C:\Program Files\HomeGuard Pro\vglset.exe    BUILTIN\Users:(I)(F)
C:\Program Files\HomeGuard Pro\vglsetw.exe   BUILTIN\Users:(I)(F)

Navigation

Suggest Exploit

Services By CQR