EIP-2026-115331

PRE-CVE

Gold MP4 Player 3.3 - Buffer Overflow (PoC) (SEH)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115331. PoCs published by Gabor Seljan.

AI-analyzed exploit summary This Perl script generates a malicious .txt file containing a crafted URL with a long string of 'A' characters to trigger a buffer overflow in GoldMP4Player 3.3. The exploit leverages SEH (Structured Exception Handler) overwrites, as evidenced by the crash analysis in the comments, leading to potential arbitrary code execution.

Description

Gold MP4 Player 3.3 - Buffer Overflow (PoC) (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gabor Seljan · perldoswindows

https://www.exploit-db.com/exploits/31914

View Code ZIP pw:eip

This Perl script generates a malicious .txt file containing a crafted URL with a long string of 'A' characters to trigger a buffer overflow in GoldMP4Player 3.3. The exploit leverages SEH (Structured Exception Handler) overwrites, as evidenced by the crash analysis in the comments, leading to potential arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: GoldMP4Player 3.3

No auth needed

Prerequisites: Victim must open the crafted .txt file in GoldMP4Player and navigate to the malicious URL via 'File -> Open Flash URL'

MITRE ATT&CK

T1210 - Exploitation of Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026