EIP-2026-116199

PRE-CVE

RPCScan 2.03 - Hostname/IP Field Overwrite (SEH) (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116199. PoCs published by Nipun Jaswal.

AI-analyzed exploit summary This exploit demonstrates an SEH (Structured Exception Handler) overwrite vulnerability in RPCScan v2.03 by crafting a malicious input file. The PoC writes a buffer overflow payload to 'evil.txt', which when pasted into the Hostname/IP field, corrupts the SEH chain.

Description

RPCScan 2.03 - Hostname/IP Field Overwrite (SEH) (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nipun Jaswal · pythondoswindows

https://www.exploit-db.com/exploits/39789

View Code ZIP pw:eip

This exploit demonstrates an SEH (Structured Exception Handler) overwrite vulnerability in RPCScan v2.03 by crafting a malicious input file. The PoC writes a buffer overflow payload to 'evil.txt', which when pasted into the Hostname/IP field, corrupts the SEH chain.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: RPCScan v2.03

No auth needed

Prerequisites: RPCScan v2.03 installed on Windows 7 Home Basic

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026