CVE-2012-4177

Ubisoft Uplay PC < 2.0.4 - Remote Code Execution via -orbit_exe_path Argument

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-4177. PoCs published by Metasploit, including Metasploit module exploits/windows/browser/ubisoft_uplay_cmd_exec.

AI-analyzed exploit summary This Metasploit module exploits CVE-2012-4177, a vulnerability in Ubisoft uplay 2.0.3 ActiveX control, allowing arbitrary code execution via a malicious WebDAV server. The exploit serves a crafted HTML page that triggers the vulnerability when visited by a vulnerable client.

Description

The web browser plugin for Ubisoft Uplay PC before 2.0.4 allows remote attackers to execute arbitrary programs via the -orbit_exe_path command line argument.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/20321

This Metasploit module exploits CVE-2012-4177, a vulnerability in Ubisoft uplay 2.0.3 ActiveX control, allowing arbitrary code execution via a malicious WebDAV server. The exploit serves a crafted HTML page that triggers the vulnerability when visited by a vulnerable client.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Ubisoft uplay 2.0.3
No auth needed
Prerequisites: Victim must visit a malicious WebDAV server · Ubisoft uplay 2.0.3 must be installed · Port 80 must be accessible for the WebDAV server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ubisoft_uplay_cmd_exec.rb

This Metasploit module exploits a vulnerability in Ubisoft uplay 2.0.3 ActiveX control to achieve arbitrary code execution. It uses a WebDAV server to serve a malicious executable and triggers the vulnerability via a crafted HTML page with an embedded ActiveX object.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Ubisoft uplay 2.0.3
No auth needed
Prerequisites: Target must be running Windows XP SP3 · uplay must not already be running · User must be signed in or auto-sign in must be enabled · Module must be run on port 80
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (5)

Core 5
Core References
Various Sources x_refsource_misc
http://www.bbc.com/news/technology-19053453
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/84402
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2012/Jul/375
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/20321

Scores

EPSS 0.5802
EPSS Percentile 99.0%

Details

CWE
CWE-78
Status published
Products (4)
ubi/uplay_pc 2.0
ubi/uplay_pc 2.0.1
ubi/uplay_pc 2.0.2
ubi/uplay_pc < 2.0.3
Published Aug 07, 2012
Tracked Since Feb 18, 2026