EIP-2026-102968

PRE-CVE

RealPlayer 9 *nix - Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102968. PoCs published by Jon Hart.

AI-analyzed exploit summary This exploit demonstrates a local privilege escalation (LPE) vulnerability in RealPlayer 9 by replacing a shared library (cook.so.6.0) with a malicious version that binds a shell to a specified port. The attack leverages group-writeable configuration files in ~/.realnetworks/ to manipulate library paths.

Description

RealPlayer 9 *nix - Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jon Hart · clocallinux

https://www.exploit-db.com/exploits/93

View Code ZIP pw:eip

This exploit demonstrates a local privilege escalation (LPE) vulnerability in RealPlayer 9 by replacing a shared library (cook.so.6.0) with a malicious version that binds a shell to a specified port. The attack leverages group-writeable configuration files in ~/.realnetworks/ to manipulate library paths.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: RealPlayer 9

Auth required

Prerequisites: Local access to the target system · Group-writeable ~/.realnetworks/ directory · Ability to modify victim's RealPlayer configuration

MITRE ATT&CK

T1574.006 - Dynamic Linker Hijacking T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026