CVE-2020-36933

Name of the Vulnerable Software and Affected Versions HTC IPTInstaller version 4.0.9

Description The software contains an unquoted service path vulnerability in the PassThru Service configuration. This allows attackers to inject and execute malicious code with elevated LocalSystem privileges by exploiting the unquoted binary path.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.