EIP-2026-115323

PRE-CVE

GeoHttpServer - Remote Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115323. PoCs published by aviho1.

AI-analyzed exploit summary This Perl script exploits a denial-of-service (DoS) vulnerability in GeoVision's GeoHttpServer by sending a malformed POST request with an oversized 'id' parameter (300 'A' characters) to the password recovery page. The lack of proper input validation causes the server to crash.

Description

GeoHttpServer - Remote Denial of Service

Exploits (1)

exploitdb WORKING POC

by aviho1 · perldoswindows

https://www.exploit-db.com/exploits/12531

View Code ZIP pw:eip

This Perl script exploits a denial-of-service (DoS) vulnerability in GeoVision's GeoHttpServer by sending a malformed POST request with an oversized 'id' parameter (300 'A' characters) to the password recovery page. The lack of proper input validation causes the server to crash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: GeoVision GeoHttpServer (all versions)

No auth needed

Prerequisites: Network access to the target server · GeoHttpServer running and accessible

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026