CVE-2020-37250

Description

TFTP Broadband 4.3.0.1465 contains an unquoted service path vulnerability in the tftpt.exe service binary that allows local attackers to execute arbitrary code with system privileges. Attackers can place a malicious executable in the Program Files directory path that will be executed during service startup or system reboot with LocalSystem privileges.

References

• https://www.exploit-db.com/exploits/49852
• https://www.vulncheck.com/advisories/tftp-broadband-unquoted-service-path-privilege-escalation
• https://www.weird-solutions.com