EIP-2026-103140

PRE-CVE

HP HP-UX 10.34 rlpdaemon - Remote Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103140. PoCs published by RSI Advise.

AI-analyzed exploit summary This exploit targets vulnerabilities in HP-UX's rlpdaemon, allowing remote command execution as the 'lp' user via command injection in the Unlink Data File section and arbitrary file upload. It leverages the lack of input validation and RFC-1179 violations.

Description

HP HP-UX 10.34 rlpdaemon - Remote Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by RSI Advise · cremotelinux

https://www.exploit-db.com/exploits/19119

View Code ZIP pw:eip

This exploit targets vulnerabilities in HP-UX's rlpdaemon, allowing remote command execution as the 'lp' user via command injection in the Unlink Data File section and arbitrary file upload. It leverages the lack of input validation and RFC-1179 violations.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP-UX rlpdaemon (HP-UX 9.x and 10.x)

No auth needed

Prerequisites: Network access to the target's rlpdaemon (port 515)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026