EIP-2026-117575

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117575. PoCs published by BindView's Razor Team.

AI-analyzed exploit summary This is a detailed technical analysis of three vulnerabilities in Windows NT 4.0's LPC (Local Procedure Call) implementation, including session hijacking, memory access violations, and MID exhaustion leading to DoS or privilege escalation. The writeup explains the root causes, affected APIs, and exploitation steps but does not include functional exploit code.

Description

Microsoft Windows NT 4.0/2000 Predictable LPC Message Identifier - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by BindView's Razor Team · textlocalwindows

https://www.exploit-db.com/exploits/20257

View Code ZIP pw:eip

This is a detailed technical analysis of three vulnerabilities in Windows NT 4.0's LPC (Local Procedure Call) implementation, including session hijacking, memory access violations, and MID exhaustion leading to DoS or privilege escalation. The writeup explains the root causes, affected APIs, and exploitation steps but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: Windows NT 4.0

No auth needed

Prerequisites: Local interactive access to the target machine

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Microsoft Windows NT 4.0/2000 Predictable LPC Message Identifier - Multiple Vulnerabilities

Exploitation Summary

Description

Exploits (1)

Details