Exploitation Summary
EIP tracks 1 public exploit for CVE-2017-9779. PoCs published by homjxi0e.
AI-analyzed exploit summary This repository contains a README describing CVE-2017-9779, which involves automatic execution of payloads via Windows path users. It references Cmder and .bashrc but lacks actual exploit code.
Description
OCaml compiler allows attackers to have unspecified impact via unknown vectors, a similar issue to CVE-2017-9772 "but with much less impact."
Exploits (1)
nomisec
WRITEUP
by homjxi0e · poc
https://github.com/homjxi0e/CVE-2017-9779
This repository contains a README describing CVE-2017-9779, which involves automatic execution of payloads via Windows path users. It references Cmder and .bashrc but lacks actual exploit code.
Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target:
Cmder (version not specified)
No auth needed
Prerequisites:
Access to a Windows system with Cmder installed
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://caml.inria.fr/mantis/view.php?id=7557
Mailing List, Release Notes, Third Party Advisory mailing-list
x_refsource_mlist
https://sympa.inria.fr/sympa/arc/caml-list/2017-06/msg00094.html
Scores
CVSS v3
7.8
EPSS
0.0058
EPSS Percentile
42.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
ocaml/ocaml
< 4.04.1
Published
Sep 07, 2017
Tracked Since
Feb 18, 2026