CVE-2016-20095 | Matrix42 Remote Control Host 3.20.0031 contains an unquoted … | CVSS 7.8 HIGH

Description

Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files directory with a crafted name to be executed by the service during startup, gaining elevated privileges.

Metadata

CVE ID: CVE-2016-20095
State: PUBLISHED
Assigner: VulnCheck
Reserved: 2026-06-19 13:26 UTC
Published: 2026-06-19 14:16 UTC
Last updated: 2026-06-19 14:16 UTC
Primary CWE: CWE-428
Unquoted Search Path or Element
Vendor / Product: Matrix42 / Matrix42 Remote Control Host
Sources: cve.org · NVD

Severity & Metrics

7.8 HIGH CVSS 3.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products (1)

Vendor	Product	Platform	Versions
Matrix42	Matrix42 Remote Control Host	—	3.20.0031

Weakness (CWE)

CWE	Source	Description
CWE-428	cna	Unquoted Search Path or Element

CVSS scores (2)

Score	Severity	Version	Source	Vector
8.5	HIGH	4.0	cna	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
7.8	HIGH	3.1	cna	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References (3)

ExploitDB-39908 https://www.exploit-db.com/exploits/39908
Official Product Homepage https://www.matrix42.com/
VulnCheck Advisory: Matrix42 Remote Control Host 3.20.0031 Unquoted Path Privilege Escalation https://www.vulncheck.com/advisories/matrix42-remote-control-host-unquoted-path-privilege-escalation