Authored by Andrea Bocchetti

Huawei MBAMainService suffers from an unquoted service path vulnerability.

# Exploit Title: Huawei "MBAMainService" Unquoted Service Path
# Date: 2020-12-14
# Exploit Author: Andrea Bocchetti
# Vendor Homepage:
https://consumer.huawei.com/en/support/laptops/matebook-d/
# Software Link: https://consumer.huawei.com/en/support/laptops/matebook-d/
# Category:Local
# Tested on: Microsoft Windows 10 Pro ( 10.0.19041.488)

# Step to discover the unquoted Service:
C:Usersuser>wmic service get name, displayname, pathname, startmode |
findstr /i "Auto" |findstr /i /v "C:Windows" |findstr /i /v """

C:UsersAndrea>sc qc "MBAMainService"
[SC] QueryServiceConfig OPERAZIONI RIUSCITE


[image: 56565.JPG]