EIP-2026-116076

PRE-CVE

Plogue Sforzando 1.665 - Buffer Overflow (SEH) (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116076. PoCs published by Mike Czumak.

AI-analyzed exploit summary This Perl script demonstrates a buffer overflow vulnerability in Plogue Sforzando v1.665 by crafting a malicious XML file (AriaSetup.xml) that overwrites SEH and EIP. It includes detailed technical notes on the exploit mechanics, stack layout, and input sanitization challenges.

Description

Plogue Sforzando 1.665 - Buffer Overflow (SEH) (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mike Czumak · perldoswindows

https://www.exploit-db.com/exploits/29387

View Code ZIP pw:eip

This Perl script demonstrates a buffer overflow vulnerability in Plogue Sforzando v1.665 by crafting a malicious XML file (AriaSetup.xml) that overwrites SEH and EIP. It includes detailed technical notes on the exploit mechanics, stack layout, and input sanitization challenges.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Plogue Sforzando v1.665

No auth needed

Prerequisites: Victim must open the malicious AriaSetup.xml file with the vulnerable software

MITRE ATT&CK

T1210 - Exploitation of Remote Services T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026