CVE-2017-9644

HIGH

ALC WebCTRL <6.5 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-9644. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit details an insecure file permissions vulnerability in Automated Logic WebCTRL 6.5 and prior, allowing authenticated users to modify executable files due to improper permissions (Authenticated Users group has Modify/Change access). This can lead to privilege escalation via unquoted service path issues.

Description

An Unquoted Search Path or Element issue was discovered in Automated Logic Corporation (ALC) ALC WebCTRL, i-Vu, SiteScan Web 6.5 and prior; ALC WebCTRL, SiteScan Web 6.1 and prior; ALC WebCTRL, i-Vu 6.0 and prior; ALC WebCTRL, i-Vu, SiteScan Web 5.5 and prior; and ALC WebCTRL, i-Vu, SiteScan Web 5.2 and prior. An unquoted search path vulnerability may allow a non-privileged local attacker to change files in the installation directory and execute arbitrary code with elevated privileges.

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textlocalwindows

https://www.exploit-db.com/exploits/42542

View Code ZIP pw:eip

The exploit details an insecure file permissions vulnerability in Automated Logic WebCTRL 6.5 and prior, allowing authenticated users to modify executable files due to improper permissions (Authenticated Users group has Modify/Change access). This can lead to privilege escalation via unquoted service path issues.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Automated Logic WebCTRL 6.5 and prior

Auth required

Prerequisites: Authenticated access to the system · Ability to modify files in the WebCTRL directory

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100454

Mitigation, Third Party Advisory, US Government Resource x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-17-234-01

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/42542/

Scores

CVSS v3 7.0

EPSS 0.0141

EPSS Percentile 69.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-428

Status published

Products (4)

automatedlogic/i-vu < 5.2

automatedlogic/sitescan_web < 5.2

carrier/automatedlogic_webctrl < 5.2

n/a/Automated Logic Corporation WebCTRL, i-VU, SiteScan Automated Logic Corporation WebCTRL, i-VU, SiteScan

Published Aug 25, 2017

Tracked Since Feb 18, 2026