EIP-2026-118017

PRE-CVE

TOSHIBA DVD PLAYER Navi Support Service - 'TNaviSrv' Unquoted Service Path

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118017. PoCs published by SamAlucard.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path vulnerability in TOSHIBA DVD PLAYER Navi Support Service (TNaviSrv). The analysis shows the service path contains spaces and is unquoted, which could allow local privilege escalation if an attacker plants a malicious executable in the path.

Description

TOSHIBA DVD PLAYER Navi Support Service - 'TNaviSrv' Unquoted Service Path

Exploits (1)

exploitdb WRITEUP

by SamAlucard · textlocalwindows

https://www.exploit-db.com/exploits/50760

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path vulnerability in TOSHIBA DVD PLAYER Navi Support Service (TNaviSrv). The analysis shows the service path contains spaces and is unquoted, which could allow local privilege escalation if an attacker plants a malicious executable in the path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: TOSHIBA Navi Support Service 1.00.0000

Auth required

Prerequisites: Local access to the system · Ability to write to the 'C:\Program Files (x86)\TOSHIBA\TOSHIBA DVD' directory

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026