EIP-2026-103356

PRE-CVE

Offset2lib - Bypassing Full ASLR On 64 bit Linux

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103356. PoCs published by Packet Storm.

AI-analyzed exploit summary This advisory describes a weakness in Linux ASLR implementation for 64-bit PIE-compiled executables, allowing an attacker to de-randomize mmapped areas by knowing an address from the application and the offset2lib value. It references external proof-of-concept code but does not contain exploit code itself.

Description

Offset2lib - Bypassing Full ASLR On 64 bit Linux

Exploits (1)

exploitdb WRITEUP

by Packet Storm · textlocallinux_x86-64

https://www.exploit-db.com/exploits/35472

View Code ZIP pw:eip

This advisory describes a weakness in Linux ASLR implementation for 64-bit PIE-compiled executables, allowing an attacker to de-randomize mmapped areas by knowing an address from the application and the offset2lib value. It references external proof-of-concept code but does not contain exploit code itself.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Theoretical

Target: 64-bit PIE Linux

No auth needed

Prerequisites: Address leak from the executable · Offset2lib value

MITRE ATT&CK

T1595.002 - Vulnerability Scanning

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026