CVE-2026-41089

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, causing a crash and potential remote code execution on unpatched Windows Domain Controllers.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP (UDP 389). The exploit sends a crafted CLDAP ping request with an oversized username to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution on unpatched Windows Domain Controllers.

This repository contains a functional exploit for CVE-2026-41089, a critical stack-based buffer overflow in Windows Netlogon's CLDAP service. The exploit leverages a Unicode string handling vulnerability to achieve remote code execution with SYSTEM privileges on Windows Server 2012-2025 domain controllers via UDP port 389.

This repository contains a non-destructive precondition checker for CVE-2026-41089, a Netlogon stack buffer overflow vulnerability. It probes domain controllers to determine if their DNS domain names are long enough to trigger the overflow without actually exploiting it.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack-based buffer overflow in Windows Netlogon via CLDAP. The exploit crafts a malicious CLDAP ping with an oversized username to trigger a buffer overflow in LSASS, leading to a crash and potential RCE.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in the Netlogon service via CLDAP ping requests. The exploit demonstrates the vulnerability by sending a crafted CLDAP packet with an oversized username to trigger a buffer overflow in the Netlogon service, potentially causing a denial-of-service (DoS) condition.

This repository contains a functional PoC for CVE-2026-41089, a stack buffer overflow in Netlogon via CLDAP ping requests. The exploit sends a crafted UDP packet to trigger a buffer overflow in the Netlogon service, potentially causing a DoS (LSASS crash) on Windows Server 2012 through 2025 Domain Controllers.

The repository lacks actual exploit code and instead directs users to an external download link (tinyurl.com). The README provides minimal technical details and reads more like a generic vulnerability summary rather than a legitimate PoC or writeup.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in the Netlogon service of Windows Domain Controllers. The exploit sends a crafted CLDAP ping request with an oversized username to trigger the overflow, leading to a denial-of-service (DoS) condition.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Netlogon via CLDAP ping requests. The exploit sends a crafted CLDAP packet with an oversized username to trigger a buffer overflow in Windows Server 2012 through 2025 Domain Controllers, leading to LSASS crash and potential remote code execution.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP ping requests. The PoC demonstrates the vulnerability by sending a crafted UDP packet to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP (UDP 389). The exploit sends a crafted CLDAP ping request with an oversized username to trigger a buffer overflow in netlogon!NetpLogonPutUnicodeString, leading to LSASS crash and potential RCE.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The PoC sends a crafted UDP packet to trigger the overflow, potentially causing LSASS to crash and the domain controller to reboot.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, causing a crash and potential remote code execution.

This repository contains a functional PoC for CVE-2026-41089, a Netlogon stack buffer overflow via CLDAP ping. The exploit sends a crafted CLDAP request with an oversized username to trigger a buffer overflow in the Netlogon service, leading to a DoS (LSASS crash) and potential RCE.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow in the Netlogon service via CLDAP ping requests. The exploit sends a crafted CLDAP packet with an oversized username to trigger a buffer overflow in the Netlogon service, potentially causing a denial-of-service (DoS) or remote code execution (RCE).

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP ping requests. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, causing a crash and reboot of the domain controller.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The PoC sends a crafted UDP packet to trigger the overflow, causing LSASS to crash and the domain controller to reboot.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, potentially causing a crash or reboot of the Domain Controller.

The repository contains a functional PoC for CVE-2026-41089 (Netlogon stack buffer overflow via CLDAP) but also includes a malicious setup.py script that extracts and executes an embedded executable, indicating deceptive intent.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP. The exploit sends a crafted UDP packet to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution.

This repository contains a Python-based detection tool for CVE-2026-41089, a Windows Netlogon RCE vulnerability. The script checks for vulnerable systems by analyzing netlogon.dll versions, installed KB updates, and OS build numbers without exploiting the vulnerability.

The repository lacks actual exploit code and instead redirects users to an external download link (tinyurl.com). The README provides minimal technical details and focuses on generic usage instructions without demonstrating any understanding of the vulnerability.

This repository provides a detailed technical analysis of CVE-2026-41089, a critical stack-based buffer overflow in Windows Netlogon allowing unauthenticated RCE. It includes vulnerability details, attack scenarios, and mitigation strategies but lacks functional exploit code.

This repository contains a functional proof-of-concept exploit for CVE-2026-41089, a stack buffer overflow vulnerability in Windows Netlogon via CLDAP (UDP 389). The exploit sends a crafted CLDAP ping request with an oversized username to trigger a buffer overflow in LSASS, leading to a crash and potential remote code execution.