EIP-2026-101018

PRE-CVE

GoodiWare GoodReader iPhone - '.XLS' Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101018. PoCs published by Matthew Bergin.

AI-analyzed exploit summary The exploit involves a fuzzed XLS file designed to trigger vulnerabilities in iPhone Document Reader Applications. The PoC file (13825.xls) is a mutated version of a publicly available spreadsheet, likely targeting parsing flaws in these applications.

Description

GoodiWare GoodReader iPhone - '.XLS' Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by Matthew Bergin · textdoshardware

https://www.exploit-db.com/exploits/13825

View Code ZIP pw:eip

The exploit involves a fuzzed XLS file designed to trigger vulnerabilities in iPhone Document Reader Applications. The PoC file (13825.xls) is a mutated version of a publicly available spreadsheet, likely targeting parsing flaws in these applications.

Classification

Working Poc 80%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: iPhone Document Reader Applications (unspecified versions)

No auth needed

Prerequisites: Access to a vulnerable iPhone Document Reader Application · Ability to deliver the malicious XLS file to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026