CVE-2017-1000475

This is a writeup demonstrating an unquoted service path vulnerability in FreeSSHd 1.3.1. The exploit leverages the lack of quotes around the service path to potentially execute arbitrary code if an attacker can place a malicious executable in the path.

This repository documents a local privilege escalation (LPE) vulnerability in freeSSHd 1.3.1 due to an unquoted service path. The writeup includes detailed steps, screenshots, and a proof-of-concept using MSFVenom to achieve SYSTEM-level reverse shell execution upon service restart.

This repository documents an unquoted service path vulnerability in freeSSHd 1.3.1, allowing local privilege escalation (LPE) to SYSTEM via a crafted executable named 'Program.exe'. The writeup includes step-by-step exploitation details with screenshots but lacks functional exploit code.