EIP-2026-117276

PRE-CVE

HomeGuard Pro 9.3.1 - Insecure Folder Permissions

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117276. PoCs published by boku.

AI-analyzed exploit summary This writeup details an insecure folder and file permissions vulnerability in HomeGuard Pro 9.3.1, where the installation directory and executable files are writable by all users. This allows for privilege escalation via DLL hijacking or binary replacement due to unquoted service paths.

Description

HomeGuard Pro 9.3.1 - Insecure Folder Permissions

Exploits (1)

exploitdb WRITEUP

by boku · textlocalwindows

https://www.exploit-db.com/exploits/48068

View Code ZIP pw:eip

This writeup details an insecure folder and file permissions vulnerability in HomeGuard Pro 9.3.1, where the installation directory and executable files are writable by all users. This allows for privilege escalation via DLL hijacking or binary replacement due to unquoted service paths.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: HomeGuard Pro 9.3.1

Auth required

Prerequisites: Local access to the system · Write permissions to the installation directory

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026