CVE-2023-53949

HIGH

AspEmail 5.6.0.2 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-53949. PoCs published by Zer0FauLT.

AI-analyzed exploit summary This exploit demonstrates a local privilege escalation (LPE) in AspEmail 5.6.0.2 by leveraging weak service binary permissions. The attacker replaces the service binary with a malicious executable to gain SYSTEM privileges.

Description

AspEmail 5.6.0.2 contains a binary permission vulnerability that allows local users to escalate privileges through the Persits Software EmailAgent service. Attackers can exploit full write permissions in the BIN directory to replace the service executable and gain elevated system access.

Exploits (1)

exploitdb WORKING POC
by Zer0FauLT · textlocalwindows
https://www.exploit-db.com/exploits/51380

This exploit demonstrates a local privilege escalation (LPE) in AspEmail 5.6.0.2 by leveraging weak service binary permissions. The attacker replaces the service binary with a malicious executable to gain SYSTEM privileges.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: AspEmail 5.6.0.2
Auth required
Prerequisites: Local access to the system · AspEmail service running · Write permissions to the service binary directory
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/51380
Various Sources product
https://www.aspemail.com

Scores

CVSS v3 8.4
EPSS 0.0011
EPSS Percentile 1.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-732
Status published
Products (1)
Aspemail/AspEmail < 5.6.0.2
Published Dec 19, 2025
Tracked Since Feb 18, 2026