Posts

Showing posts from 2018

Unquoted service path vulnerability in WCAssistantService Lavasoft

Image
Vulnerability: Unquoted service path vulnerability in WCAssistantService Lavasoft

Severity: High

Impact: Any user that has Lavasoft webcompanion installed in their system can elevate his privilege on local system.

Description:

Web Companion blocks websites that try to steal your personal information by impersonating sites you know and trust. It keeps your passwords, payment and other personal information safe from hackers.

Unquoted service path exists for the service "WCAssistantService". This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.

How to check:
C:\>wmic service get name,displayname,pathname,startmode | findstr /i "auto" | findstr /i /v "c:\windows\\" | findstr /i /v """
WC Assistant                                                           WCAssistantService                                      C:\Program Files (x86)\Lavasoft\Web Companion\Ap…