EIP-2026-115001

PRE-CVE

BlueZone Desktop - Multiple Malformed Files Local Denial of Service Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115001. PoCs published by Silent_Dream.

AI-analyzed exploit summary This exploit generates malformed .zmd, .zmp, .zvt, and .zad files that trigger a local denial of service (DoS) in BlueZone Desktop when opened. The script writes files with specific headers followed by a buffer of 'A' characters to crash the respective BlueZone executables.

Description

BlueZone Desktop - Multiple Malformed Files Local Denial of Service Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Silent_Dream · perldoswindows

https://www.exploit-db.com/exploits/18030

View Code ZIP pw:eip

This exploit generates malformed .zmd, .zmp, .zvt, and .zad files that trigger a local denial of service (DoS) in BlueZone Desktop when opened. The script writes files with specific headers followed by a buffer of 'A' characters to crash the respective BlueZone executables.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: BlueZone Desktop (Latest version as of 2011)

No auth needed

Prerequisites: Local access to the target system · BlueZone Desktop installed · Ability to execute the script and open the generated files

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026