EIP-2026-116618

PRE-CVE

Xmyplay 3.5.1 - Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116618. PoCs published by s-dz.

AI-analyzed exploit summary This exploit generates a maliciously large M3U file to trigger a buffer overflow in XMPlay 3.5.1, likely leading to a denial-of-service (DoS) condition. The PoC writes a 1,000,000-byte file filled with 'A' characters to exploit a vulnerability in the media player's file parsing.

Description

Xmyplay 3.5.1 - Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by s-dz · perldoswindows

https://www.exploit-db.com/exploits/14515

View Code ZIP pw:eip

This exploit generates a maliciously large M3U file to trigger a buffer overflow in XMPlay 3.5.1, likely leading to a denial-of-service (DoS) condition. The PoC writes a 1,000,000-byte file filled with 'A' characters to exploit a vulnerability in the media player's file parsing.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: XMPlay 3.5.1

No auth needed

Prerequisites: XMPlay 3.5.1 installed on the target system · Ability to deliver the malicious M3U file to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026