eBeam Education Suite Unquoted Service Path Vulnerability in eBeam Device Service
Vulnerability
A unquoted service path vulnerability has been identified in eBeam Education Suite version 2.5.0.9, specifically within the eBeam Device Service. This vulnerability allows local users to execute code with elevated privileges. The unquoted service path can be exploited to inject malicious code that executes with LocalSystem privileges when the service starts up.
Impact
Exploitation of this vulnerability could lead to unauthorized code execution with elevated privileges, allowing a local user to execute malicious payloads with the highest level of system rights.
Reproduction
The vulnerability can be reproduced by creating a malicious executable and placing it in a directory that is not monitored by the operating system or security applications. The executable should be named in a way that takes advantage of the unquoted service path vulnerability. Once the executable is in place, restarting the eBeam Device Service will trigger the execution of the malicious code with LocalSystem privileges.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.