Akamai EAA Client Unquoted Path Vulnerability Allowing Privilege Escalation

A vulnerability exists in the Akamai Enterprise Application Access (EAA) Client for Windows, specifically in versions prior to 2.3.1, 2.4.x prior to 2.4.1, and 2.5.x prior to 2.5.3. The issue arises from an unquoted service path that can be exploited to hijack the execution flow. This unquoted path vulnerability, a type of path interception, takes advantage of how Windows processes paths with spaces when launching applications or services. If not properly quoted, the operating system may misinterpret the path, leading to the execution of unintended applications. In the case of the EAA Client, this could allow a malicious actor to place a harmful executable that would be run with administrative privileges, potentially escalating privileges on the system.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of malicious processes with administrative rights, allowing for significant changes to the system or access to sensitive information.

Remediation

Users are advised to update the Akamai EAA Client to version 2.5.3, 2.4.1, or 2.3.1. For versions prior to 2.3.1, no remediation is available as support for those versions has ended.