JumpStart Unquoted Service Path Vulnerability in jswpbapi Service
Vulnerability
A vulnerability exists in JumpStart version 0.6.0.0, specifically within the jswpbapi service, which runs with LocalSystem privileges. The issue arises from an unquoted service path that contains spaces, allowing attackers to inject and execute malicious code with elevated system rights.
Impact
Exploitation of this vulnerability could lead to unauthorized code execution with elevated privileges on the system.
Reproduction
To reproduce this vulnerability, install JumpStart version 0.6.0.0 on a Windows 10 Home operating system. After installation, open the Command Prompt and execute a command to list services with their names, display names, and paths. Filter the results to exclude system services and those with paths containing 'C:\Windows\'. The unquoted service path for jswpbapi will be displayed, revealing the vulnerability. Next, check the service configuration to confirm it runs under LocalSystem privileges and that the unquoted path is vulnerable to exploitation.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.