EIP-2026-104106

PRE-CVE

TildeSlash Monit 1-4 - Authentication Handling Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104106. PoCs published by Nilanjan De.

AI-analyzed exploit summary This is a functional remote root exploit for Monit <= 4.2, leveraging a buffer overflow in Basic Authentication handling. It includes shellcode for a port-binding shell on port 31337 and targets specific return addresses for Gentoo and other systems.

Description

TildeSlash Monit 1-4 - Authentication Handling Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nilanjan De · cremotemultiple

https://www.exploit-db.com/exploits/24224

View Code ZIP pw:eip

This is a functional remote root exploit for Monit <= 4.2, leveraging a buffer overflow in Basic Authentication handling. It includes shellcode for a port-binding shell on port 31337 and targets specific return addresses for Gentoo and other systems.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Monit <= 4.2

No auth needed

Prerequisites: Network access to the target Monit service · Monit service running with vulnerable version (<= 4.2)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026