Home Tools Exploits & CVE's Intel Management Engine Components 6.0.0.1189 Unquoted Service Path

Intel Management Engine Components 6.0.0.1189 Unquoted Service Path

February 20, 2022

680

Intel Management Engine Components version 6.0.0.1189 suffers from an unquoted service path vulnerability.

#Exploit Title: Intel(R) Management Engine Components 6.0.0.1189 - 'LMS' Unquoted Service Path
#Exploit Author : SamAlucard
#Exploit Date: 2022-02-17
#Vendor :  Intel
#Version : Intel(R) Management Engine Components 6.0.0.1189
#Vendor Homepage : https://www.intel.com
#Tested on OS: Windows 7 Pro

#Analyze PoC :
==============

C:>sc qc LMS
[SC] QueryServiceConfig CORRECTO

NOMBRE_SERVICIO: LMS
        TIPO               : 10  WIN32_OWN_PROCESS
        TIPO_INICIO        : 2   AUTO_START
        CONTROL_ERROR      : 1   NORMAL
        NOMBRE_RUTA_BINARIO: C:Program Files (x86)IntelIntel(R)
Management Engine ComponentsLMSLMS.exe
        GRUPO_ORDEN_CARGA  :
        ETIQUETA           : 0
        NOMBRE_MOSTRAR     : Intel(R) Management and Security Application
Local Management Service
        DEPENDENCIAS       :
        NOMBRE_INICIO_SERVICIO: LocalSystem

Intel Management Engine Components 6.0.0.1189 Unquoted Service Path

Follow us on Instagram @thecyberpost

EDITOR PICKS

Chyrp 2.5.2 Cross Site Scripting

Apache mod_proxy_cluster Cross Site Scripting

Backdoor.Win32.AsyncRat MVID-2024-0683 Code Execution

POPULAR POSTS

ESET NOD32 Antivirus 17.1.11.0 Unquoted Service Path

Restaurant Reservation System Patches Easy-to-Exploit XSS Bug

Sniffle – A Sniffer For Bluetooth 5 And 4.X LE

POPULAR CATEGORY

Windows Kernel KTM Registry Transactions Non-Atomic Outcomes

WordPress Select All Categories And Taxonomies 1.3.1 Cross Site Scripting

WordPress Wibar Theme 1.1.8 Cross Site Scripting