EIP-2026-116578

PRE-CVE

WPS Office < 2016 - '.doc' OneTableDocumentStream Memory Corruption

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116578. PoCs published by Francis Provencher.

AI-analyzed exploit summary This is a vulnerability writeup for WPS Office versions before 2016, detailing a stack-based memory corruption flaw in the handling of crafted DOC files. The PoC is referenced but not directly included in the provided code.

Description

WPS Office < 2016 - '.doc' OneTableDocumentStream Memory Corruption

Exploits (1)

exploitdb WRITEUP

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/39396

View Code ZIP pw:eip

This is a vulnerability writeup for WPS Office versions before 2016, detailing a stack-based memory corruption flaw in the handling of crafted DOC files. The PoC is referenced but not directly included in the provided code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: WPS Office versions before 2016

No auth needed

Prerequisites: User interaction to open a malicious DOC file

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026