EIP-2026-117385

PRE-CVE

KiteService 1.2020.1113.1 - 'KiteService.exe' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117385. PoCs published by IRVIN GIL.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path vulnerability in KiteService 1.2020.1113.1. It includes steps to identify the vulnerability and explains the potential impact of local privilege escalation via executable placement in the system root path.

Description

KiteService 1.2020.1113.1 - 'KiteService.exe' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by IRVIN GIL · textlocalwindows

https://www.exploit-db.com/exploits/49047

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path vulnerability in KiteService 1.2020.1113.1. It includes steps to identify the vulnerability and explains the potential impact of local privilege escalation via executable placement in the system root path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: KiteService 1.2020.1113.1

Auth required

Prerequisites: Local access to the system · Ability to write to the system root path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026