VPN unlimited 6.1 - Unquoted Service Path

🗓️ 14 Jan 2020 00:00:00Reported by Amin RawahType

exploitdb🔗 www.exploit-db.com👁 258 Views

VPN unlimited 6.1 Unquoted Service Path vulnerability on Windows 10 64bi

# Exploit Title: VPN unlimited 6.1 - Unquoted Service Path
# Date: 2020-1-13
# Exploit Author: Amin Rawah
# Vendor Homepage: https://www.vpnunlimitedapp.com
# Version: 6.1
# Tested on: Windows 10 64bit

C:\Users\Amin>sc qc VPNUnlimitedService
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: VPNUnlimitedService
        TYPE               : 10  WIN32_OWN_PROCESS
        START_TYPE         : 2   AUTO_START
        ERROR_CONTROL      : 1   NORMAL
        BINARY_PATH_NAME   : C:\Program Files (x86)\VPN
Unlimited\vpn-unlimited-daemon.exe
        LOAD_ORDER_GROUP   :
        TAG                : 0
        DISPLAY_NAME       : VPN Unlimited Service
        DEPENDENCIES       :
        SERVICE_START_NAME : LocalSystem

14 Jan 2020 00:00Current

7.4High risk

Vulners AI Score7.4