EIP-2026-117890

PRE-CVE

Sandboxie Plus 0.7.4 - 'SbieSvc' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117890. PoCs published by Erick Galindo.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path vulnerability in Sandboxie Plus 0.7.4. The author provides steps to identify the vulnerability using WMIC and SC commands, highlighting the potential for privilege escalation during system startup or reboot.

Description

Sandboxie Plus 0.7.4 - 'SbieSvc' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by Erick Galindo · textlocalwindows

https://www.exploit-db.com/exploits/49842

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path vulnerability in Sandboxie Plus 0.7.4. The author provides steps to identify the vulnerability using WMIC and SC commands, highlighting the potential for privilege escalation during system startup or reboot.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Sandboxie Plus 0.7.4

Auth required

Prerequisites: Local access to the system · Ability to place an executable in a path higher in the search order than the intended service binary

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026