EIP-2026-116449

PRE-CVE

UltraISO 9.3.6.2750 - Local Buffer Overflow (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116449. PoCs published by fl0 fl0w.

AI-analyzed exploit summary This exploit targets a local buffer overflow vulnerability in UltraISO (version 9.3.6.2750) by crafting malicious CCD and IMG files. The overflow is triggered when the software processes the specially crafted files, potentially leading to arbitrary code execution.

Description

UltraISO 9.3.6.2750 - Local Buffer Overflow (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by fl0 fl0w · cdoswindows

https://www.exploit-db.com/exploits/11363

View Code ZIP pw:eip

This exploit targets a local buffer overflow vulnerability in UltraISO (version 9.3.6.2750) by crafting malicious CCD and IMG files. The overflow is triggered when the software processes the specially crafted files, potentially leading to arbitrary code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: UltraISO 9.3.6.2750

No auth needed

Prerequisites: Victim must open the malicious CCD file with UltraISO

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026