EIP-2026-103987

PRE-CVE

Miranda IM 0.8.16 - Information Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103987. PoCs published by Jan Schejbal.

AI-analyzed exploit summary This Perl script demonstrates a man-in-the-middle (MitM) attack against Miranda IM by stripping TLS negotiation from the server's response, forcing the client to communicate in plaintext. It intercepts and forwards traffic between the client and server while removing the STARTTLS offer.

Description

Miranda IM 0.8.16 - Information Disclosure

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jan Schejbal · perlremotemultiple

https://www.exploit-db.com/exploits/33816

View Code ZIP pw:eip

This Perl script demonstrates a man-in-the-middle (MitM) attack against Miranda IM by stripping TLS negotiation from the server's response, forcing the client to communicate in plaintext. It intercepts and forwards traffic between the client and server while removing the STARTTLS offer.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Miranda IM 0.8.16

No auth needed

Prerequisites: Network access to intercept traffic · Victim must be configured to manually specify connection host · TLS must be enabled in Miranda IM

MITRE ATT&CK

T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026