CVE-2019-19896

Name of the Vulnerable Software and Affected Versions IXP EasyInstall version 6.2.13723

Description The issue allows for Remote Code Execution due to weak permissions on the Engine Service share. By default, the file permissions of the IXP$ share on the server permit modification of directories and files, such as bat-scripts. This enables the execution of code in the context of NT AUTHORITYSYSTEM on both the target server and clients.

Recommendations For IXP EasyInstall version 6.2.13723, consider restricting access to the IXP$ share to prevent unauthorized modifications, and review the permissions on the Engine Service share to ensure they are properly secured. As a temporary workaround, restrict write access to the IXP$ share to minimize the risk of exploitation.