EIP-2026-116900

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116900. PoCs published by emalp.

AI-analyzed exploit summary This exploit demonstrates a local buffer overflow in BlazeDVD 7.0 Professional via a crafted '.plf' file, leveraging SEH bypass, ASLR/DEP evasion, and ROP chains to execute arbitrary shellcode (a message box in this case). The payload is constructed with careful attention to bad characters and register setup for VirtualProtect.

Description

BlazeDVD 7.0 Professional - '.plf' Local Buffer Overflow (SEH_ASLR_DEP)

Exploits (1)

exploitdb WORKING POC

by emalp · pythonlocalwindows

https://www.exploit-db.com/exploits/48776

View Code ZIP pw:eip

This exploit demonstrates a local buffer overflow in BlazeDVD 7.0 Professional via a crafted '.plf' file, leveraging SEH bypass, ASLR/DEP evasion, and ROP chains to execute arbitrary shellcode (a message box in this case). The payload is constructed with careful attention to bad characters and register setup for VirtualProtect.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: BlazeDVD 7.0 Professional

No auth needed

Prerequisites: Local access to the target system · BlazeDVD 7.0 Professional installed · Ability to deliver the crafted '.plf' file to the target

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

BlazeDVD 7.0 Professional - '.plf' Local Buffer Overflow (SEH_ASLR_DEP)

Exploitation Summary

Description

Exploits (1)

Details