EIP-2026-103159

PRE-CVE

Liquid War 5.4.5/5.5.6 - HOME Environment Variable Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103159. PoCs published by Angelo Rosiello.

AI-analyzed exploit summary This exploit leverages a buffer overflow in Liquid War by manipulating the HOME environment variable to execute arbitrary shellcode, granting GID Games privileges. It targets specific offsets for Slackware 9.0.0 and Gentoo 1.4.

Description

Liquid War 5.4.5/5.5.6 - HOME Environment Variable Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Angelo Rosiello · cremotelinux

https://www.exploit-db.com/exploits/23151

View Code ZIP pw:eip

This exploit leverages a buffer overflow in Liquid War by manipulating the HOME environment variable to execute arbitrary shellcode, granting GID Games privileges. It targets specific offsets for Slackware 9.0.0 and Gentoo 1.4.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Liquid War (version unspecified)

No auth needed

Prerequisites: Local access to the target system · Liquid War installed with setgid permissions

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026