LiteManager 4.5.0 – ‘romservice’ Unquoted Serive Path

• Exploit Database
• 13 阅读

• 作者： cakes
  日期： 2019-10-16
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/47508/

• # Exploit Title : LiteManager 4.5.0 - 'romservice' Unquoted Serive Path
  # Date : 2019-10-15
  # Exploit Author : Cakes
  # Vendor: LiteManager Team
  # Version : LiteManager 4.5.0
  # Software: http://html.tucows.com/preview/1594042/LiteManager-Free?q=remote+support
  # Tested on Windows 10
  # CVE : N/A 
   
  c:\>sc qc romservice
  [SC] QueryServiceConfig SUCCESS
  
  SERVICE_NAME: romservice
  TYPE : 10WIN32_OWN_PROCESS
  START_TYPE : 2 AUTO_START
  ERROR_CONTROL: 1 NORMAL
  BINARY_PATH_NAME : C:\Program Files (x86)\LiteManagerFree - Server\ROMServer.exe
  LOAD_ORDER_GROUP :
  TAG: 0
  DISPLAY_NAME : LiteManagerTeam LiteManager
  DEPENDENCIES :
  SERVICE_START_NAME : LocalSystem