EIP-2026-102166

PRE-CVE

iOS FileApp < 2.0 - FTP Remote Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102166. PoCs published by m0ebiusc0de.

AI-analyzed exploit summary This exploit targets a denial-of-service vulnerability in FileApp < 2.0 FTP service by sending an overly long username (5000 'A' characters) during authentication, causing the service to crash. It is tested on iPad 3.2.2 and requires network access to the target.

Description

iOS FileApp < 2.0 - FTP Remote Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by m0ebiusc0de · pythondosios

https://www.exploit-db.com/exploits/15188

View Code ZIP pw:eip

This exploit targets a denial-of-service vulnerability in FileApp < 2.0 FTP service by sending an overly long username (5000 'A' characters) during authentication, causing the service to crash. It is tested on iPad 3.2.2 and requires network access to the target.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: FileApp < 2.0

No auth needed

Prerequisites: Network access to the target FTP service on port 2121

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026