Primary

Context

TexasSoft CyberPlanet Unquoted Service Path Vulnerability in CCSrvProxy Allowing Arbitrary Code Execution

Vulnerability

A vulnerability exists in TexasSoft CyberPlanet version 6.4.131 within the CCSrvProxy service, due to an unquoted service path. This flaw enables local attackers to execute arbitrary code by exploiting the unquoted path in 'C:\Program Files (x86)\TenaxSoft\CyberPlanet\SrvProxy.exe'. Attackers can inject malicious executables that, when executed, could lead to elevated system privileges.

Impact

Exploitation of this vulnerability allows for arbitrary code execution with elevated privileges on the affected system.

Reproduction

The vulnerability can be reproduced by injecting a malicious executable into the unquoted service path of the CCSrvProxy service. This can be done by exploiting the unquoted path vulnerability, which allows the injected executable to be executed with elevated privileges.

Added: Feb 5, 2026, 12:39 AM

Updated: Feb 5, 2026, 12:39 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.2

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TexasSoft CyberPlanet Unquoted Service Path Vulnerability in CCSrvProxy Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating