EIP-2026-116664

PRE-CVE

Zoner Photo Studio 15 b3 - Buffer Overflow (PoC)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116664. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary The exploit demonstrates two local stack-based buffer overflow vulnerabilities in Zoner Photo Studio v15 b3. The first is triggered via malformed XML input in the keyword import module, while the second occurs in the email publishing module when processing a large input in the archive name field.

Description

Zoner Photo Studio 15 b3 - Buffer Overflow (PoC)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Vulnerability-Lab · textdoswindows

https://www.exploit-db.com/exploits/22685

View Code ZIP pw:eip

The exploit demonstrates two local stack-based buffer overflow vulnerabilities in Zoner Photo Studio v15 b3. The first is triggered via malformed XML input in the keyword import module, while the second occurs in the email publishing module when processing a large input in the archive name field.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Zoner Photo Studio v15 Build 3

No auth needed

Prerequisites: Local access to the system · Zoner Photo Studio v15 b3 installed

MITRE ATT&CK

T1210 - Exploitation of Remote Services T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026