CVE-2019-25308
Awaiting Analysis Awaiting Analysis - Queue
Unquoted Service Path Vulnerability in Mikogo Service Enables Privilege Escalation

Publication date: 2026-02-11

Last updated on: 2026-02-26

Assigner: VulnCheck

Description
Mikogo 5.2.2.150317 contains an unquoted service path vulnerability in the Mikogo-Service Windows service configuration. Attackers can exploit the unquoted path to inject and execute malicious code with LocalSystem privileges by placing executable files in specific path locations.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-11
Last Modified
2026-02-26
Generated
2026-06-16
AI Q&A
2026-02-11
EPSS Evaluated
2026-06-14
NVD
CVE-2019-25308
EUVD
EUVD-2019-19451
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
mikogo mikogo 5.2.150317
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-428 The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

I don't know

Executive Summary

[{'type': 'paragraph', 'content': "CVE-2019-25308 is an unquoted service path vulnerability in the Mikogo-Service Windows service configuration of Mikogo version 5.2.2.150317. Because the service path contains spaces and is not enclosed in quotes, an attacker with local privileges can place malicious executable files in specific directories. When the service starts, the system may mistakenly execute the attacker's malicious code instead of the legitimate service executable."}, {'type': 'paragraph', 'content': 'This vulnerability allows the attacker to execute arbitrary code with LocalSystem privileges, which is the highest level of privilege on a Windows system.'}] [1, 2]

Impact Analysis

Exploitation of this vulnerability can lead to local privilege escalation, allowing an attacker to execute arbitrary code with LocalSystem privileges.

This means the attacker can gain full control over the affected system, potentially compromising confidentiality, integrity, and availability of data and system resources.

Detection Guidance

This vulnerability can be detected by checking the Mikogo-Service Windows service configuration for unquoted service paths, especially paths containing spaces.

A common method is to query the service path using Windows command line tools and inspect if the executable path is unquoted.

  • Run the command: sc qc Mikogo-Service
  • Check the BINARY_PATH_NAME output for unquoted paths containing spaces, such as: C:\Users\Administrator\AppData\Roaming\Mikogo\Mikogo-Service.exe

If the path is unquoted and contains spaces, the service is vulnerable to this unquoted service path privilege escalation.

Mitigation Strategies

[{'type': 'paragraph', 'content': 'To mitigate this vulnerability, immediately update the Mikogo-Service Windows service configuration to properly quote the service executable path.'}, {'type': 'paragraph', 'content': 'Specifically, enclose the full path to Mikogo-Service.exe in double quotes to prevent the system from misinterpreting the path and executing malicious code.'}, {'type': 'list_item', 'content': 'Use the command: sc config Mikogo-Service binPath= ""C:\\Users\\Administrator\\AppData\\Roaming\\Mikogo\\Mikogo-Service.exe""'}, {'type': 'paragraph', 'content': 'Additionally, ensure that no unauthorized executables exist in directories along the service path that could be executed by the system.'}, {'type': 'paragraph', 'content': 'If possible, update Mikogo to a version where this vulnerability is fixed or apply vendor-provided patches.'}] [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2019-25308. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart