EIP-2026-117344

PRE-CVE

IObit Uninstaller 9.1.0.8 - 'IObitUnSvr' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117344. PoCs published by Sainadh Jamalpur.

AI-analyzed exploit summary This advisory describes an unquoted service path vulnerability in IObit Uninstaller 9.1.0.8, where the service path lacks quotes, potentially allowing local privilege escalation if an attacker can place a malicious executable in the system root path.

Description

IObit Uninstaller 9.1.0.8 - 'IObitUnSvr' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by Sainadh Jamalpur · textlocalwindows

https://www.exploit-db.com/exploits/47538

View Code ZIP pw:eip

This advisory describes an unquoted service path vulnerability in IObit Uninstaller 9.1.0.8, where the service path lacks quotes, potentially allowing local privilege escalation if an attacker can place a malicious executable in the system root path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: IObit Uninstaller 9.1.0.8

Auth required

Prerequisites: Local access to the system · Ability to write to the system root path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026