CVE-2011-5044

SopCast 3.4.7.45585 - Unauthenticated Arbitrary Code Execution via Weak Diagnose.exe Permissions

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-5044. PoCs published by LiquidWorm.

AI-analyzed exploit summary The vulnerability involves improper file permissions on 'Diagnose.exe' in SopCast 3.4.7, allowing any user to replace the executable due to the 'Everyone:F' permission. This can lead to local privilege escalation (LPE) if an attacker replaces the binary with a malicious one.

Description

SopCast 3.4.7.45585 uses weak permissions (Everyone:Full Control) for Diagnose.exe, which allows local users to execute arbitrary code by replacing Diagnose.exe with a Trojan horse program.

Exploits (1)

exploitdb WRITEUP
by LiquidWorm · textlocalwindows
https://www.exploit-db.com/exploits/18201

The vulnerability involves improper file permissions on 'Diagnose.exe' in SopCast 3.4.7, allowing any user to replace the executable due to the 'Everyone:F' permission. This can lead to local privilege escalation (LPE) if an attacker replaces the binary with a malicious one.

Classification
Writeup 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: SopCast 3.4.7.45585
No auth needed
Prerequisites: Local access to the system · SopCast installed with vulnerable permissions
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/71622
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/77724
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18201
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40940

Scores

EPSS 0.0111
EPSS Percentile 61.5%

Details

CWE
CWE-264
Status published
Products (1)
sopcast/sopcast 3.4.7.45585
Published Dec 30, 2011
Tracked Since Feb 18, 2026