EIP-2026-115502
PRE-CVEKaspersky AntiVirus - '.DEX' File Format Memory Corruption
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-115502. PoCs published by Google Security Research.
AI-analyzed exploit summary The provided content describes a heap overflow vulnerability in Kaspersky's antivirus engine (avengine_dll) caused by a wild memcpy operation during DEX file processing. The analysis includes crash details, register states, and a note about exploitability for RCE as NT AUTHORITY\SYSTEM, but lacks direct exploit code.
Description
Kaspersky AntiVirus - '.DEX' File Format Memory Corruption
Exploits (1)
The provided content describes a heap overflow vulnerability in Kaspersky's antivirus engine (avengine_dll) caused by a wild memcpy operation during DEX file processing. The analysis includes crash details, register states, and a note about exploitability for RCE as NT AUTHORITY\SYSTEM, but lacks direct exploit code.