Disk Sorter Enterprise Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A vulnerability exists in Disk Sorter Enterprise version 12.4.16 due to an unquoted service path. This flaw allows local attackers to execute arbitrary code with elevated privileges. Exploitation involves injecting malicious executables into the unquoted service path, which are then executed with LocalSystem rights.
Impact
Exploitation of this vulnerability could lead to unauthorized execution of code with elevated system privileges, allowing local attackers to perform actions as the LocalSystem user.
Reproduction
The vulnerability can be reproduced by exploiting the unquoted service path of the 'Disk Sorter Enterprise' service. This can be done by injecting a malicious executable into the service path, which is located at 'C:\Program Files\Disk Sorter Enterprise\bin\disksrs.exe'. Once the executable is injected, it will be executed with LocalSystem privileges.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.