Active Webcam 115 Unquoted Service Path Patched Free -

import winreg

Active WebCam version 11.5 was found to have a critical security flaw known as an vulnerability (tracked as CVE-2021-47790 ). This allows a local attacker to gain administrative control over your computer. What is the Vulnerability? active webcam 115 unquoted service path patched

wmic service get name,displayname,pathname,startmode |findstr /i "auto" |findstr /i /v "c:\windows\\" |findstr /i /v """ Active WebCam appears in the results, it is unquoted and vulnerable. Apply the Fix (Registry Editor): and navigate to: import winreg Active WebCam version 11

Version 11.5 (build 115) was particularly affected by a service path misconfiguration that, until now, exposed users to a classic Windows privilege escalation attack. wmic service get name

The developer modified the service installer to enclose the binary path in double quotes:

While there is no formal academic "paper" on the Active WebCam 11.5