Primary

Context

Acer Backup Manager Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Acer Backup Manager version 3.0.0.99 has an unquoted service path vulnerability in the NTI IScheduleSvc service. This flaw allows local users to execute arbitrary code by exploiting the unquoted path in the program files directory. Malicious executables can be injected and executed with elevated LocalSystem privileges.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution with elevated privileges.

Reproduction

The vulnerability can be reproduced by injecting a malicious executable into the unquoted service path of 'IScheduleSvc.exe' located in 'C:\Program Files (x86)\NTI\Acer Backup Manager\'. The injected executable will run with LocalSystem privileges, allowing for elevated access on the system.

Added: Jan 16, 2026, 7:40 PM

Updated: Jan 16, 2026, 7:40 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Acer Backup Manager Unquoted Service Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating