Opened 19 months ago
Closed 12 months ago
#490 closed enhancement (fixed)
LocalSystem Services should use quoted executable paths
| Reported by: | steffenpoulsen | Owned by: | mickem |
|---|---|---|---|
| Priority: | 1 | Milestone: | 0.4.0 |
| Component: | installer | Version: | 0.3.9 |
| Severity: | Feature Requests | Keywords: | |
| Cc: |
Description
Recently a security audit showed that the NSClient service is configured with an unquoted executable path:
BINARY_PATH_NAME=c:\Program Files\NSClient\NSClient++.exe
This should be changed so that NSClient instead will register the service using a quoted executable path, e.g.:
BINARY_PATH_NAME="c:\Program Files\NSClient\NSClient++.exe"
---
Some background information ("The Program.exe hack").
http://www.ihtb.org/security/program.exe-privilege_escalation.txt
http://seclists.org/fulldisclosure/2007/Aug/492
http://cwe.mitre.org/data/definitions/428.html
http://msdn.microsoft.com/en-us/library/xe736fyk(v=vs.71).aspx
Change History (5)
comment:1 Changed 19 months ago by mickem
- Owner changed from MickeM to mickem
comment:2 Changed 19 months ago by steffenpoulsen
Ah, that sounds great, that it is already fixed in 0.4.0!
If it is not too much work I would appreciate an updated 0.3.9 very much :-)
comment:3 Changed 16 months ago by mickem
- Milestone set to 0.3.10
- Version set to 0.3.9
comment:4 Changed 16 months ago by mickem
- Component changed from Core to installer
comment:5 Changed 12 months ago by mickem
- Milestone changed from 0.3.10 to 0.4.0
- Resolution set to fixed
- Status changed from new to closed
Setting this to resolved as there most likely wont be a 3.10 version (and it is fixed in 0.4.0 anyways)
This is if nothing else fixed (I think) in 0.4.0 which installed as:
But maybe I should do an updated 0.3.9 as well?
Michael Medin