Lucene search
K

9 matches found

NVD
NVD
added 2026/06/19 3:16 p.m.12 views

CVE-2020-37253

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS0.00109EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:16 p.m.4 views

CVE-2020-37253

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/19 2:16 p.m.12 views

CVE-2020-37253

The CVE pertains to Winstep 18.06.0096, where the Winstep Xtreme Service has an unquoted service path vulnerability. This allows a local attacker to escalate privileges by placing a malicious executable in Program Files that is executed with LocalSystem privileges when the service starts. Affecte...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 2:16 p.m.6 views

EUVD-2020-31254

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/19 2:16 p.m.28 views

CVE-2020-37253 Winstep 18.06.0096 Unquoted Service Path Privilege Escalation

Winstep 18.06.0096 contains an unquoted service path vulnerability in the Winstep Xtreme Service that allows local attackers to escalate privileges. Attackers can place malicious executables in the Program Files directory to be executed with LocalSystem privileges when the service starts...

8.5CVSS0.00109EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.11 views

PT-2026-50918

Name of the Vulnerable Software and Affected Versions Winstep version 18.06.0096 Description The Winstep Xtreme Service contains an unquoted service path issue. This occurs when a service path contains spaces and is not enclosed in quotes, allowing a local attacker to place a malicious executable...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References4
0day.today
0day.today
added 2020/11/09 12:0 a.m.31 views

Winstep 18.06.0096 - (Xtreme Service) Unquoted Service Path Vulnerability

Exploit Title: Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path Exploit Author : SamAlucard Vendor : Winstep Version : WsxService 18.06.0096 Vendor Homepage : https://www.winstep.net/xtreme.asp Tested on OS: Windows 7 Pro Analyze PoC : ============== C:\sc qc "Winstep Xtreme Service" S...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/11/09 12:0 a.m.220 views

Winstep 18.06.0096 Unquoted Service Path

Exploit Title: Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path Exploit Author : SamAlucard Exploit Date: 2020-11-08 Vendor : Winstep Version : WsxService 18.06.0096 Vendor Homepage : https://www.winstep.net/xtreme.asp Tested on OS: Windows 7 Pro Analyze PoC : ============== C:\sc qc...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/09 12:0 a.m.287 views

Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path

Exploit Title: Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path Exploit Author : SamAlucard Exploit Date: 2020-11-08 Vendor : Winstep Version : WsxService 18.06.0096 Vendor Homepage : https://www.winstep.net/xtreme.asp Tested on OS: Windows 7 Pro Analyze PoC : ============== C:\sc qc...

7.4AI score
Exploits0
Rows per page
Query Builder