CVE-2020-36959

HIGH

IDT PC Audio 1.0.6499.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-36959. PoCs published by Diego Cañada.

AI-analyzed exploit summary This writeup describes an unquoted service path vulnerability in IDT PC Audio 1.0.6499.0, where the service path 'C:\Program Files\IDT\WDM\STacSV64.exe' is unquoted, potentially allowing local privilege escalation if an attacker can place a malicious executable in a higher-level directory.

Description

IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted path in the STacSV service to inject malicious code that would execute with LocalSystem account permissions during service startup.

Exploits (1)

exploitdb WRITEUP
by Diego Cañada · textlocalwindows
https://www.exploit-db.com/exploits/49191

This writeup describes an unquoted service path vulnerability in IDT PC Audio 1.0.6499.0, where the service path 'C:\Program Files\IDT\WDM\STacSV64.exe' is unquoted, potentially allowing local privilege escalation if an attacker can place a malicious executable in a higher-level directory.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: IDT PC Audio 1.0.6499.0
Auth required
Prerequisites: Local access to the system · Ability to write to a directory in the service path
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.8
EPSS 0.0013
EPSS Percentile 2.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-428
Status published
Products (1)
IDT/IDT PC Audio < 1.0.6499.0
Published Jan 26, 2026
Tracked Since Feb 18, 2026