EIP-2026-117090

PRE-CVE

Easy AVI DivX Converter 1.2.24 - Local Buffer Overflow (SEH)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117090. PoCs published by Anurag Srivastava.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Easy AVI DivX Converter 1.2.24 via the 'Enter User Name' field, leveraging SEH overwrite to execute arbitrary code (calc.exe). The payload is generated using msfvenom and avoids specified bad characters.

Description

Easy AVI DivX Converter 1.2.24 - Local Buffer Overflow (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Anurag Srivastava · pythonlocalwindows

https://www.exploit-db.com/exploits/42549

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Easy AVI DivX Converter 1.2.24 via the 'Enter User Name' field, leveraging SEH overwrite to execute arbitrary code (calc.exe). The payload is generated using msfvenom and avoids specified bad characters.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Easy AVI DivX Converter 1.2.24

No auth needed

Prerequisites: Vulnerable version of Easy AVI DivX Converter installed · User interaction to paste malicious input into the 'Enter User Name' field

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026