EIP-2026-116858

PRE-CVE

AVCON H323Call - Local Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116858. PoCs published by Dillon Beresford.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in AVCON H323Call versions 4.6.8.7 and 4.6.4.0. It uses a structured exception handler (SEH) overwrite technique to execute arbitrary shellcode, specifically launching calc.exe via a Metasploit-generated payload.

Description

AVCON H323Call - Local Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dillon Beresford · perllocalwindows

https://www.exploit-db.com/exploits/12528

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in AVCON H323Call versions 4.6.8.7 and 4.6.4.0. It uses a structured exception handler (SEH) overwrite technique to execute arbitrary shellcode, specifically launching calc.exe via a Metasploit-generated payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AVCON H323Call 4.6.8.7, 4.6.4.0

No auth needed

Prerequisites: AVCON H323Call installed and running on Windows XP SP2/SP3 · Ability to paste exploit string into the H323 Call input field

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026