← back
CVE-2021-47828

BOOTP Turbo 2.0.0.1253 - 'bootpt.exe' Unquoted Service Path

CVSS 8.5 HIGHEPSS 0.1%CWE-428
BOOTP Turbo 2.0.0.1253 contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path to execute arbitrary code with elevated LocalSystem privileges during system startup or reboot.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Weird-Solutions · BOOTP Turbo

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/49851https://www.vulncheck.com/advisories/bootp-turbo-bootptexe-unquoted-service-pathhttps://www.weird-solutions.com