EIP-2026-119627

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119627. PoCs published by LiquidWorm.

AI-analyzed exploit summary This advisory details an unquoted service path vulnerability in ACROS Security 0patch (0PatchServicex64.exe) that could allow local privilege escalation. The issue arises from the service's binary path not being enclosed in quotes, potentially enabling arbitrary code execution with elevated privileges if an attacker can place a malicious executable in the system root path.

Description

ACROS Security 0patch 2016.05.19.539 - '0PatchServicex64.exe' Unquoted Service Path Privilege Escalation

Exploits (1)

exploitdb WRITEUP VERIFIED

by LiquidWorm · textlocalwindows_x86-64

https://www.exploit-db.com/exploits/39984

View Code ZIP pw:eip

This advisory details an unquoted service path vulnerability in ACROS Security 0patch (0PatchServicex64.exe) that could allow local privilege escalation. The issue arises from the service's binary path not being enclosed in quotes, potentially enabling arbitrary code execution with elevated privileges if an attacker can place a malicious executable in the system root path.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Theoretical

Target: ACROS Security 0patch (2016.05.19.539)

Auth required

Prerequisites: Local access to the system · Ability to write to the system root path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 18, 2026 Full analysis →

ACROS Security 0patch 2016.05.19.539 - '0PatchServicex64.exe' Unquoted Service Path Privilege Escalation

Exploitation Summary

Description

Exploits (1)

Details