CVE-2019-25304

SecurOS Enterprise 10.2 contains an unquoted service path vulnerability in the SecurosCtrlService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\ISS\SecurOS\ to insert malicious code that would execute...

CVE-2019-25304

CVE-2019-25304 affects SecurOS Enterprise 10.2, specifically the SecurosCtrlService which uses an unquoted service path at C:\Program Files (x86)\ISS\SecurOS\ during startup. This can allow local users to insert malicious code and execute with system-level privileges. Exploitation details and pub...

EUVD-2019-19406

SecurOS Enterprise 10.2 contains an unquoted service path vulnerability in the SecurosCtrlService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\ISS\SecurOS\ to insert malicious code that would execute...

CVE-2019-25304 Intelligent Security System SecurOS Enterprise 10.2 - 'SecurosCtrlService' Unquoted Service Path

SecurOS Enterprise 10.2 contains an unquoted service path vulnerability in the SecurosCtrlService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\ISS\SecurOS\ to insert malicious code that would execute...

ISS SecurOS Enterprise 代码问题漏洞

ISS SecurOS Enterprise is a video management platform provided by the American company ISS. Version 10.2 of ISS SecurOS Enterprise contains a code vulnerability. This vulnerability stems from the SecurosCtrlService having a service path that lacks quotation marks, which may allow local users to...

Intelligent Security System SecurOS Enterprise 10.2 Unquoted Service Path

Exploit Title: Intelligent Security System SecurOS Enterprise 10.2 - 'SecurosCtrlService' Unquoted Service Path Discovery Date: 2019-10-28 Exploit Author: Alberto Vargas Vendor Homepage: https://www.issivs.com/product-detail/secure-os-enterprise/ Software Link:...