EIP-2026-117452

PRE-CVE

Mediacoder - '.m3u' Local Buffer Overflow (SEH)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117452. PoCs published by metacom.

AI-analyzed exploit summary This exploit demonstrates an SEH buffer overflow vulnerability in multiple MediaCoder products (versions 0.8.22.x) via a crafted .m3u file. It uses a standard SEH overwrite technique with a short jump (nSEH) and a POP EBX gadget (SEH) to redirect execution to a calc.exe payload.

Description

Mediacoder - '.m3u' Local Buffer Overflow (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED
by metacom · pythonlocalwindows
https://www.exploit-db.com/exploits/26403

This exploit demonstrates an SEH buffer overflow vulnerability in multiple MediaCoder products (versions 0.8.22.x) via a crafted .m3u file. It uses a standard SEH overwrite technique with a short jump (nSEH) and a POP EBX gadget (SEH) to redirect execution to a calc.exe payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: MediaCoder (multiple editions) 0.8.22.x
No auth needed
Prerequisites: Victim must open the malicious .m3u file in a vulnerable MediaCoder version
devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026