关键信息 EXPLOIT TITLE: Motorola Device Manager 2.5.4 - 'MotoHelperService.exe' Unquoted Service Path AFFECTED SOFTWARE: Motorola Device Manager 2.5.4 VULNERABILITY TYPE: Unquoted Service Path PLATFORM: Windows DISCOVERY DATE: 2020-11-07 TESTED ON OS: Windows 10 Pro x64 DISCOVERED BY: Angel Canseco VENDOR HOMEPAGE: https://motorola-device-manager.programas-gratis.net/descarga-completada Details of the Vulnerability A successful attack can insert code into the system root path undetected by the OS or other security applications, elevating the attacker's privileges after reboot. Identifying Unquoted Service Path EXPL器械ITATION STEPS (简介) 1. Identify and attack on Unquoted Service Path. 2. Upon success, code is inserted into the system as the root path of the OS and other security applications are undetected, privelages are escalated after OS reboot.