EIP-2026-117429

PRE-CVE

Macro Expert 4.0 - Multiple Privilege Escalations

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117429. PoCs published by Tulpa.

AI-analyzed exploit summary This writeup details a local privilege escalation vulnerability in Macro Expert 4.0 due to an unquoted service path and weak folder permissions, allowing arbitrary code execution with SYSTEM privileges. The analysis includes service configuration and directory permission checks.

Description

Macro Expert 4.0 - Multiple Privilege Escalations

Exploits (1)

exploitdb WRITEUP

by Tulpa · textlocalwindows

https://www.exploit-db.com/exploits/40428

View Code ZIP pw:eip

This writeup details a local privilege escalation vulnerability in Macro Expert 4.0 due to an unquoted service path and weak folder permissions, allowing arbitrary code execution with SYSTEM privileges. The analysis includes service configuration and directory permission checks.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Macro Expert 4.0

Auth required

Prerequisites: Local access to the system · Ability to write to the system root path or exploit weak folder permissions

MITRE ATT&CK

T1546.008 - Accessibility Features T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026