EIP-2026-117488

PRE-CVE

Microsoft Exchange Active Directory Topology 15.02.1118.007 - 'Service MSExchangeADTopology' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117488. PoCs published by Milad karimi.

AI-analyzed exploit summary This is a technical writeup demonstrating an unquoted service path vulnerability in Microsoft Exchange Server 2019 CU12. The vulnerability allows local privilege escalation due to improper handling of spaces in the service path.

Description

Microsoft Exchange Active Directory Topology 15.02.1118.007 - 'Service MSExchangeADTopology' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by Milad karimi · textlocalwindows

https://www.exploit-db.com/exploits/51212

View Code ZIP pw:eip

This is a technical writeup demonstrating an unquoted service path vulnerability in Microsoft Exchange Server 2019 CU12. The vulnerability allows local privilege escalation due to improper handling of spaces in the service path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Exchange Server 2019 CU12 (15.02.1118.007)

Auth required

Prerequisites: Local access to the target system · Ability to create executable files in the root of C:\

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026