EIP-2026-103499

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103499. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Chrome's P2PSocketDispatcherHost due to improper handling of object lifetime during RenderProcessHostImpl reinitialization. The PoC triggers the issue by forcing a reinitialization while Mojo messages are still being processed, leading to a heap-use-after-free condition.

Description

Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/46474

View Code ZIP pw:eip

This exploit demonstrates a use-after-free vulnerability in Chrome's P2PSocketDispatcherHost due to improper handling of object lifetime during RenderProcessHostImpl reinitialization. The PoC triggers the issue by forcing a reinitialization while Mojo messages are still being processed, leading to a heap-use-after-free condition.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Google Chrome (specific version not specified, likely pre-patch builds)

No auth needed

Prerequisites: Local build of Chrome with ASan enabled · MojoJS feature flag enabled · Custom HTML/JS payload to trigger the vulnerability

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Exploitation Summary

Description

Exploits (1)

Details