CVE-2016-20090

HIGH

Comodo Dragon Browser 52.15.25.663 Privilege Escalation via Unquoted Service Path

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-20090. PoCs published by Th3GundY.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path privilege escalation vulnerability in Comodo Dragon Browser's update service. The vulnerability allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service's unquoted path.

Description

Comodo Dragon Browser versions up to 52.15.25.663 contain a privilege escalation vulnerability in the DragonUpdater service due to an unquoted service path running with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or system reboot.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Th3GundY · textlocalwindows

https://www.exploit-db.com/exploits/40471

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path privilege escalation vulnerability in Comodo Dragon Browser's update service. The vulnerability allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service's unquoted path.

Classification

Writeup 95%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Comodo Dragon Browser <= 52.15.25.663

Auth required

Prerequisites: Local access to the system · Ability to place an executable in the service path

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Jun 19, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit exploit

ExploitDB-40471

https://www.exploit-db.com/exploits/40471

Product product

Official Product Homepage

https://www.comodo.com

Product product

Official Product Homepage

http://yildirimyunus.com

Product product

Product Reference

https://www.comodo.com/home/browsers-toolbars/browser.php

Third Party Advisory third-party-advisory

VulnCheck Advisory: Comodo Dragon Browser 52.15.25.663 Privilege Escalation via Unquoted Service Path

https://www.vulncheck.com/advisories/comodo-dragon-browser-privilege-escalation-via-unquoted-service-path

Scores

CVSS v3 7.8

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-428

Status published

Products (1)

Comodo/Dragon Browser < 52.15.25.663

Published Jun 19, 2026

Tracked Since Jun 19, 2026