An unquoted service path in the HIDCCEMonitorSVC software allows a local attacker to potentially escalate privileges to the system level.