CVE-2021-47889
Unknown Unknown - Not Provided
Unquoted Service Path in SoftrosSpellChecker Enables Code Execution

Publication date: 2026-01-23

Last updated on: 2026-01-23

Assigner: VulnCheck

Description
Softros LAN Messenger 9.6.4 contains an unquoted service path vulnerability in the SoftrosSpellChecker service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files (x86)\Softros Systems\Softros Messenger\Spell Checker\' to inject malicious executables and escalate privileges.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-23
Last Modified
2026-01-23
Generated
2026-06-16
AI Q&A
2026-01-23
EPSS Evaluated
2026-06-15
NVD
CVE-2021-47889
EUVD
EUVD-2026-4305
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
softros lan_messenger 9.6.4
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-428 The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2021-47889 is an unquoted service path vulnerability in the SoftrosSpellChecker service of Softros LAN Messenger version 9.6.4. Because the service path contains spaces but lacks quotation marks, a local attacker with limited privileges can place a malicious executable in a higher-level directory within the service path. When the service starts, it may execute this malicious executable, allowing the attacker to run arbitrary code and escalate their privileges on the system. [1, 2]

Impact Analysis

This vulnerability can allow a local attacker to execute arbitrary code with elevated privileges by exploiting the unquoted service path. This can lead to privilege escalation, compromising the confidentiality, integrity, and availability of the affected system. An attacker could gain control over the system, potentially leading to unauthorized access, data manipulation, or disruption of services. [1, 2]

Detection Guidance

This vulnerability can be detected by checking for unquoted service paths in Windows services, specifically the 'SoftrosSpellChecker' service. You can query Windows Management Instrumentation (WMI) or use the Service Control Manager (SC) to identify services with unquoted paths that start automatically but are not located in the Windows directory. For example, you can use the following command in an elevated command prompt or PowerShell to list services with unquoted paths: PowerShell: Get-WmiObject win32_service | Where-Object { $_.PathName -like '* *' -and $_.PathName -notlike '"*"*' } | Select-Object Name, PathName, StartMode Or using SC and findstr: sc qc SoftrosSpellChecker Then check if the executable path is unquoted and contains spaces, such as: C:\Program Files (x86)\Softros Systems\Softros Messenger\Spell Checker\SoftrosSpellChecker.exe This method helps detect the unquoted service path vulnerability that can be exploited for privilege escalation. [2]

Mitigation Strategies

To mitigate this vulnerability, immediately update the service path to include quotation marks around the executable path to prevent execution of malicious executables placed in the path. Specifically, modify the 'SoftrosSpellChecker' service path to be quoted, for example: "C:\Program Files (x86)\Softros Systems\Softros Messenger\Spell Checker\SoftrosSpellChecker.exe" Alternatively, ensure that no untrusted executables exist in any directories in the service path hierarchy. Restrict write permissions on the directories in the service path to prevent attackers from placing malicious executables. Also, consider updating Softros LAN Messenger to a version where this vulnerability is fixed if available. [1, 2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-47889. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart