EIP-2026-117424

PRE-CVE

Logitech Webcam Software 1.1 - 'eReg.exe' Local Buffer Overflow (SEH Unicode)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117424. PoCs published by Robbie Corley.

AI-analyzed exploit summary This Perl script exploits a Unicode SEH-based buffer overflow in Logitech Webcam Software 1.1 by crafting a malicious 'eReg.ini' file. The payload triggers the vulnerability when the application processes the file, leading to arbitrary code execution (e.g., launching calculator.exe).

Description

Logitech Webcam Software 1.1 - 'eReg.exe' Local Buffer Overflow (SEH Unicode)

Exploits (1)

exploitdb WORKING POC

by Robbie Corley · perllocalwindows

https://www.exploit-db.com/exploits/38147

View Code ZIP pw:eip

This Perl script exploits a Unicode SEH-based buffer overflow in Logitech Webcam Software 1.1 by crafting a malicious 'eReg.ini' file. The payload triggers the vulnerability when the application processes the file, leading to arbitrary code execution (e.g., launching calculator.exe).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Logitech Webcam Software 1.1

No auth needed

Prerequisites: Logitech Webcam Software 1.1 installed · Write access to the application's directory

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026