CVE-2021-47890

LogonExpert 8.1 contains an unquoted service path vulnerability in the LogonExpertSvc service running with LocalSystem privileges. Attackers can exploit the unquoted path to place malicious executables in intermediate directories, potentially gaining elevated system access during service startup...

CVE-2021-47890 LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path

LogonExpert 8.1 contains an unquoted service path vulnerability in the LogonExpertSvc service running with LocalSystem privileges. Attackers can exploit the unquoted path to place malicious executables in intermediate directories, potentially gaining elevated system access during service startup...

CVE-2021-47890

LogonExpert 8.1 is affected by an unquoted service path in the LogonExpertSvc service running with LocalSystem privileges. The underlying issue is an unquoted service path vulnerability that can let an attacker place malicious executables in intermediate directories, potentially gaining elevated ...

CVE-2021-47890 LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path

LogonExpert 8.1 contains an unquoted service path vulnerability in the LogonExpertSvc service running with LocalSystem privileges. Attackers can exploit the unquoted path to place malicious executables in intermediate directories, potentially gaining elevated system access during service startup...

CVE-2021-47890

LogonExpert 8.1 contains an unquoted service path vulnerability in the LogonExpertSvc service running with LocalSystem privileges. Attackers can exploit the unquoted path to place malicious executables in intermediate directories, potentially gaining elevated system access during service startup...

PT-2026-4506

Name of the Vulnerable Software and Affected Versions LogonExpert version 8.1 Description LogonExpert 8.1 has an unquoted service path issue within the LogonExpertSvc service, which operates with LocalSystem privileges. This allows attackers to potentially place malicious executables in...

Softros LogonExpert code issue vulnerability

Softros LogonExpert is a security automatic login management tool developed by the American company Softros. Version 8.1 of Softros LogonExpert contains a code vulnerability; this vulnerability arises from the service path not being enclosed in quotes, which may allow arbitrary code to be execute...

LogonExpert 8.1 - (LogonExpertSvc) Unquoted Service Path Vulnerability

Exploit Title: LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path Discovery by: Victor Mondragón Vendor Homepage: https://www.softros.com/ Software Links : https://download.logonexpert.com/LogonExpertSetup64.msi Tested Version: 8.1 Vulnerability Type: Unquoted Service Path Tested on: Window...

LogonExpert 8.1 Unquoted Service Path

Exploit Title: LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path Discovery by: Victor Mondragón Discovery Date: 23-02-2021 Vendor Homepage: https://www.softros.com/ Software Links : https://download.logonexpert.com/LogonExpertSetup64.msi Tested Version: 8.1 Vulnerability Type: Unquoted...