github-starred/barrier
2
0
Fork 0
mirror of https://github.com/debauchee/barrier.git synced 2026-05-15 14:16:02 -06:00
Code Issues 1.0k Projects Packages Wiki Activity Actions

[GH-ISSUE #1219] Unquoted service path on windows #981

New issue
Open
opened 2026-05-05 07:21:06 -06:00 by gitea-mirror · 2 comments
gitea-mirror commented 2026-05-05 07:21:06 -06:00
Owner
Copy link

Originally created by @petecog on GitHub (Jul 1, 2021).
Original GitHub issue: https://github.com/debauchee/barrier/issues/1219

Describe the bug
I've noticed that the service path created in windows registry is unquoted - which can cause a vulnerability. see https://medium.com/@SumitVerma101/windows-privilege-escalation-part-1-unquoted-service-path-c7a011a8d8ae for example

To Reproduce

Steps to reproduce the behavior:

  1. install v2.3.3
  2. Inspect HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Barrier\ImagePath

Expected behavior
Ideally value should be quoted e.g. "C:\Program Files\Barrier\barrierd.exe" - becuse of the space in 'Program Files'

Desktop (please complete the following information):

  • OS: Windows 10
  • Barrier version: 2.3.3
Originally created by @petecog on GitHub (Jul 1, 2021). Original GitHub issue: https://github.com/debauchee/barrier/issues/1219 **Describe the bug** I've noticed that the service path created in windows registry is unquoted - which can cause a vulnerability. see https://medium.com/@SumitVerma101/windows-privilege-escalation-part-1-unquoted-service-path-c7a011a8d8ae for example **To Reproduce** Steps to reproduce the behavior: 1. install v2.3.3 2. Inspect HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Barrier\ImagePath **Expected behavior** Ideally value should be quoted e.g. "C:\Program Files\Barrier\barrierd.exe" - becuse of the space in 'Program Files' **Desktop (please complete the following information):** - OS: Windows 10 - Barrier version: 2.3.3
gitea-mirror commented 2026-05-05 07:21:09 -06:00
Author
Owner
Copy link

@shymega commented on GitHub (Jul 6, 2021):

Hi. Thanks for the report. Given this is a serious security vulnerability, perhaps it should be reported to an email address to me and the other devs directly - but that's not set up yet. I'll look into that... we have another report as well, so obviously we have some vulns that need looking into. Rest assured, we are looking into this - I'll keep the issue open for now.

Thanks again!

<!-- gh-comment-id:874735927 --> @shymega commented on GitHub (Jul 6, 2021): Hi. Thanks for the report. Given this is a serious security vulnerability, perhaps it should be reported to an email address to me and the other devs directly - but that's not set up yet. I'll look into that... we have another report as well, so obviously we have some vulns that need looking into. Rest assured, we are looking into this - I'll keep the issue open for now. Thanks again!
gitea-mirror commented 2026-05-05 07:21:10 -06:00
Author
Owner
Copy link

@starmaid commented on GitHub (Mar 11, 2022):

bumping this, still an issue in 2.4.0 and nessus keeps flagging it

<!-- gh-comment-id:1064799504 --> @starmaid commented on GitHub (Mar 11, 2022): bumping this, still an issue in 2.4.0 and nessus keeps flagging it
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
enhancement/builds/windows-multi-versions-build
martin-furter-barrier-term
enhancement/builds/macos-universal
enhancement/builds/macos-universal-qt6-test
2.3.x
fix/lang-translation/ssl-slash-tls
feature/build/compile/32-bit
feature/build/compile/armv7
testing-framework
README-update
remotes/fork/README-update
remotes/fork/smartzeroconf
smartzeroconf
pages-devel
remotes/fork/pages-devel
pkgconfig
remotes/fork/pkgconfig
release
remotes/fork/release
v2.4.0
v2.3.4
v2.3.3
1.11.0-stable
v1.11.0-rc2
v2.3.2
v1.10.3-stable
v2.3.2-alpha
v2.3.1
v2.3.0
v1.10.2-stable
v1.10.2-rc1
v1.10.2-rc2
v2.1.2
v2.0.8-beta
v2.0.7-beta
v2.0.4-beta
v2.0.3-beta
v2.1.1
v2.1.0
v1.9.1-stable
v2.0.0
v1.9.0-stable
v2.0.0-RC2
v2.0.0-RC1
v2.0.0-stable
v1.8.8-stable
v1.8.7-stable
v1.8.6-stable
v1.8.5-stable
v1.8.4-stable
v1.8.3-stable
v1.8.1-stable
v1.8.0-beta
v1.7.3-stable
v1.7.2-stable
v1.7.1-stable
1.7.0
1.6.3-final
1.6.2
1.6.1
1.6.0
Labels
Clear labels   
HiDPI

   
bounty

   
bsd/freebsd

   
bsd/openbsd

   
bug

   
bug

   
build-infra

   
cantfix

   
critical

   
doc

   
duplicate

   
enhancement

   
fix-available

   
from git

   
from release

   
good first issue

   
help wanted

   
installer/package

   
invalid

   
linux

   
macOS

   
meta

   
needs testing

   
pull-request

Mirrored from GitHub Pull Request

  
query

   
question

   
regression

   
regression

   
v2.4.0

   
windows

   
wontfix

   
work-in-progress
No labels
HiDPI
bounty
bsd/freebsd
bsd/openbsd
bug
bug
build-infra
cantfix
critical
doc
duplicate
enhancement
fix-available
from git
from release
good first issue
help wanted
installer/package
invalid
linux
macOS
meta
needs testing
pull-request
query
question
regression
regression
v2.4.0
windows
wontfix
work-in-progress
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/barrier#981
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?