bulzone Posted January 18, 2024 Posted January 18, 2024 Hi, After application installation on x64bit machine, AutoIT adding unquoted path in uninstallation string, this is threaten as vulnerability - even tho, there is no issues with uninstallation, but this unquoting generate reports in vulnerability scanners like nessus. Here is the link to MS description: Microsoft Windows Unquoted Path Vulnerability | Mageni It will be nice to fix this in newer version of application. Thanks spudw2k 1
spudw2k Posted January 19, 2024 Posted January 19, 2024 As mentioned in the article, unquoted uninstall paths are a fairly low risk/security concern--compared to unquoted service paths--as uninstallers typically involve user initiation and rights escalation. Still, not a terrible suggestion to address in the next release/beta. Spoiler Things I've Made: Always On Top Tool ◊ AU History ◊ Deck of Cards ◊ HideIt ◊ ICU ◊ Icon Freezer ◊ Ipod Ejector ◊ Junos Configuration Explorer ◊ Link Downloader ◊ MD5 Folder Enumerator ◊ PassGen ◊ Ping Tool ◊ Quick NIC ◊ Read OCR ◊ RemoteIT ◊ SchTasksGui ◊ SpyCam ◊ System Scan Report Tool ◊ System UpTime ◊ Transparency Machine ◊ VMWare ESX Builder Misc Code Snippets: ADODB Example ◊ CheckHover ◊ Detect SafeMode ◊ DynEnumArray ◊ GetNetStatData ◊ HashArray ◊ IsBetweenDates ◊ Local Admins ◊ Make Choice ◊ Recursive File List ◊ Remove Sizebox Style ◊ Retrieve PNPDeviceID ◊ Retrieve SysListView32 Contents ◊ Set IE Homepage ◊ Tickle Expired Password ◊ Transpose Array Projects: Drive Space Usage GUI ◊ LEDkIT ◊ Plasma_kIt ◊ Scan Engine Builder ◊ SpeeDBurner ◊ SubnetCalc Cool Stuff: AutoItObject UDF ◊ Extract Icon From Proc ◊ GuiCtrlFontRotate ◊ Hex Edit Funcs ◊ Run binary ◊ Service_UDF
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now