EIP-2026-103879

PRE-CVE

Cacheflow CacheOS 4.1.10016 - HTTP HOST Proxy

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103879. PoCs published by Tim Kennedy.

AI-analyzed exploit summary This exploit demonstrates a vulnerability in CacheFlow CacheOS where the HOST header in an HTTP request can be misused to tunnel arbitrary TCP connections, effectively turning an internal mail server into an open relay for sending unsolicited emails. The proof-of-concept shows how an attacker can craft an HTTP request with a malicious HOST header to bypass intended restrictions.

Description

Cacheflow CacheOS 4.1.10016 - HTTP HOST Proxy

Exploits (1)

exploitdb WORKING POC VERIFIED
by Tim Kennedy · textremotemultiple
https://www.exploit-db.com/exploits/23137

This exploit demonstrates a vulnerability in CacheFlow CacheOS where the HOST header in an HTTP request can be misused to tunnel arbitrary TCP connections, effectively turning an internal mail server into an open relay for sending unsolicited emails. The proof-of-concept shows how an attacker can craft an HTTP request with a malicious HOST header to bypass intended restrictions.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: CacheFlow CacheOS
No auth needed
Prerequisites: Access to a vulnerable CacheFlow CacheOS server · Knowledge of an internal mail server address
MITRE ATT&CK
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026