Disk Sorter Server Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A vulnerability exists in Disk Sorter Server version 13.6.12 due to an unquoted service path in the binary path configuration. This flaw allows local attackers to execute arbitrary code by exploiting the unquoted path in 'C:\Program Files\Disk Sorter Server\bin\disksrs.exe'. Attackers can inject malicious executables to escalate privileges.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation and arbitrary code execution on the affected system.
Reproduction
The vulnerability can be reproduced by installing Disk Sorter Server version 13.6.12 and then using the Windows Management Instrumentation Command-line (WMIC) tool to query the service configuration. The unquoted service path can be identified, which indicates the presence of the vulnerability. Once the unquoted path is confirmed, malicious executables can be injected into the specified directory to exploit the vulnerability and execute arbitrary code with elevated privileges.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.