Exploitation Summary
EIP tracks 1 public exploit for CVE-2021-47829. PoCs published by Erick Galindo.
AI-analyzed exploit summary This is a writeup describing an unquoted service path vulnerability in DHCP Broadband 4.1.0.1503. The vulnerability allows potential privilege escalation by exploiting the unquoted path in the service configuration, which could lead to arbitrary code execution with elevated privileges during system startup or reboot.
Description
DHCP Broadband 4.1.0.1503 contains an unquoted service path vulnerability in its service configuration that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path in 'C:\Program Files\DHCP Broadband 4\dhcpt.exe' to inject malicious code that will execute during service startup with LocalSystem permissions.
Exploits (1)
This is a writeup describing an unquoted service path vulnerability in DHCP Broadband 4.1.0.1503. The vulnerability allows potential privilege escalation by exploiting the unquoted path in the service configuration, which could lead to arbitrary code execution with elevated privileges during system startup or reboot.
References (3)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H