EXPLOITDB-EDB-50758

EXPLOITDB text WRITEUP

Exploit for CVE-2022-50904 - Wondershare UBackit 2.0.5 - Code Injection

AI Analysis

This is a writeup detailing an unquoted service path vulnerability in Wondershare UBackit 2.0.5. The vulnerability allows local privilege escalation if an attacker can place an executable in a path that the service resolves due to unquoted spaces.

Attack Type

LPE

Complexity

moderate

Reliability

theoretical

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type local

Platform windows

Language text

Files 1

https://www.exploit-db.com/exploits/50758

Authors

Luis Martínez Luis Martinez

Vulnerability

CVE-2022-50904

Wondershare UBackit 2.0.5 - Code Injection

HIGH

CVSS 8.4