Active Webcam — 115 Unquoted Service Path Patched

To check for this vulnerability, an attacker with low-privilege access to the machine could run:

sc qc "Active Webcam Service"

Output example:

BINARY_PATH_NAME   : C:\Program Files\Active Webcam\awservice.exe
START_TYPE         : 2   AUTO_START
SERVICE_START_NAME : LocalSystem

Because the path contains spaces and no quotes, the system is vulnerable. active webcam 115 unquoted service path patched

If you develop Windows software that installs services: To check for this vulnerability, an attacker with

Example in C++:

TCHAR path[] = TEXT("\"C:\\Program Files\\MyApp\\service.exe\"");
CreateService(..., path, ...);

If a low-privileged user can write to C:\ or C:\Program Files\ (unlikely) or C:\Program Files\Active (more plausible in misconfigured systems), they can place a malicious executable named, for example, Active.exe. When the service starts (manually or at boot), Windows will run that malicious file instead of the real webcam software, with SYSTEM privileges. Because the path contains spaces and no quotes,