EIP-2026-117492

PRE-CVE

Microsoft Gaming Services 2.52.13001.0 - Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117492. PoCs published by Johto Robbie.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path vulnerability in Microsoft Gaming Services 2.52.13001.0, which could lead to privilege escalation. The author provides steps to identify the vulnerability and explains how an attacker could exploit it by placing a malicious executable in the path.

Description

Microsoft Gaming Services 2.52.13001.0 - Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by Johto Robbie · textlocalwindows

https://www.exploit-db.com/exploits/50776

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path vulnerability in Microsoft Gaming Services 2.52.13001.0, which could lead to privilege escalation. The author provides steps to identify the vulnerability and explains how an attacker could exploit it by placing a malicious executable in the path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Gaming Services 2.52.13001.0

Auth required

Prerequisites: Local access to the system · Ability to place a malicious executable in the unquoted path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026