USB Flash Drives Control 4.1.0.0 Unquoted Service Path

`# Exploit Title: USB Flash Drives Control 4.1.0.0 - Unquoted Service Path  
# Date: 2023-31-05  
# Exploit Author: Jeffrey Bencteux  
# Vendor Homepage: https://binisoft.org/  
# Software Link: https://binisoft.org/wfc  
# Version: 4.1.0.0  
# Tested on: Microsoft Windows 11 Pro  
# Vulnerability Type: Unquoted Service Path  
  
PS C:\> wmic service get name,displayname,pathname,startmode |findstr /i  
"auto" |findstr /i /v "c:\windows"  
USB Flash Drives Control usbcs C:\Program Files\USB Flash  
Drives Control\usbcs.exe Auto  
  
PS C:\> sc.exe qc usbcs  
[SC] QueryServiceConfig SUCCESS  
  
SERVICE_NAME: usbcs  
TYPE : 10 WIN32_OWN_PROCESS  
START_TYPE : 2 AUTO_START  
ERROR_CONTROL : 1 NORMAL  
BINARY_PATH_NAME : C:\Program Files\USB Flash Drives  
Control\usbcs.exe  
LOAD_ORDER_GROUP :  
TAG : 0  
DISPLAY_NAME : USB Flash Drives Control  
DEPENDENCIES :  
SERVICE_START_NAME : LocalSystem  
  
PS C:\> systeminfo  
OS Name: Microsoft Windows 11 Pro  
OS Version: 10.0.22621 N/A Build 22621  
OS Manufacturer: Microsoft Corporation  
  
--   
Jeffrey BENCTEUX  
  
`