EIP-2026-102850

PRE-CVE

GnomeHack - Local Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102850. PoCs published by Cody Tubbs.

AI-analyzed exploit summary This is a functional local buffer overflow exploit targeting the 'gnomehack' game on Debian 2.2 (x86). It leverages an environment variable overflow to overwrite the return address and execute shellcode, escalating privileges to the 'games' group (GID 60).

Description

GnomeHack - Local Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Cody Tubbs · clocallinux

https://www.exploit-db.com/exploits/219

View Code ZIP pw:eip

This is a functional local buffer overflow exploit targeting the 'gnomehack' game on Debian 2.2 (x86). It leverages an environment variable overflow to overwrite the return address and execute shellcode, escalating privileges to the 'games' group (GID 60).

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: gnomehack (Debian 2.2, kernel 2.2.17 - x86)

No auth needed

Prerequisites: Local access to the target system · Presence of the vulnerable 'gnomehack' binary with SGID bit set

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026