Huawei MBAMainService suffers from an unquoted service path vulnerability.
d2b8fc57152cbd17af43044bc1fb9bb04208a9bfa9dce6b64829405777227622
# Exploit Title: Huawei "MBAMainService" Unquoted Service Path
# Date: 2020-12-14
# Exploit Author: Andrea Bocchetti
# Vendor Homepage:
https://consumer.huawei.com/en/support/laptops/matebook-d/
# Software Link: https://consumer.huawei.com/en/support/laptops/matebook-d/
# Category:Local
# Tested on: Microsoft Windows 10 Pro ( 10.0.19041.488)
# Step to discover the unquoted Service:
C:\Users\user>wmic service get name, displayname, pathname, startmode |
findstr /i "Auto" |findstr /i /v "C:\Windows\\" |findstr /i /v """
C:\Users\Andrea>sc qc "MBAMainService"
[SC] QueryServiceConfig OPERAZIONI RIUSCITE
[image: 56565.JPG]