EIP-2026-115371

PRE-CVE

Haihaisoft HUPlayer 1.0.4.8 - '.m3u' / '.pls' / '.asx' Buffer Overflow (SEH)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115371. PoCs published by Gabor Seljan.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Haihaisoft HUPlayer 1.0.4.8 via crafted playlist files (m3u, pls, asx). It overwrites SEH handlers with controlled data, leading to potential arbitrary code execution.

Description

Haihaisoft HUPlayer 1.0.4.8 - '.m3u' / '.pls' / '.asx' Buffer Overflow (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gabor Seljan · pythondoswindows

https://www.exploit-db.com/exploits/32513

View Code ZIP pw:eip

This exploit demonstrates a buffer overflow vulnerability in Haihaisoft HUPlayer 1.0.4.8 via crafted playlist files (m3u, pls, asx). It overwrites SEH handlers with controlled data, leading to potential arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Haihaisoft HUPlayer 1.0.4.8

No auth needed

Prerequisites: Victim must open a malicious playlist file

MITRE ATT&CK

T1210 - Exploitation of Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026