EIP-2026-103192

PRE-CVE

PGP4Pine 1.75.6/1.76 - 'Message Line' Remote Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103192. PoCs published by Eric AUGE.

AI-analyzed exploit summary This exploit generates a malicious email file to trigger a buffer overflow in PGP4Pine, overwriting the EIP with a hardcoded address and executing shellcode to set the SUID bit on /tmp/sh. The shellcode is a simple chmod 4755 /tmp/sh payload.

Description

PGP4Pine 1.75.6/1.76 - 'Message Line' Remote Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Eric AUGE · cremotelinux

https://www.exploit-db.com/exploits/22346

View Code ZIP pw:eip

This exploit generates a malicious email file to trigger a buffer overflow in PGP4Pine, overwriting the EIP with a hardcoded address and executing shellcode to set the SUID bit on /tmp/sh. The shellcode is a simple chmod 4755 /tmp/sh payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PGP4Pine version 1.76 and earlier

No auth needed

Prerequisites: Access to the target system to deliver the malicious email file · PGP4Pine installed and configured to process the malicious input

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026