EIP-2026-117584

PRE-CVE

Microsoft Windows XP - 'tskill' Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117584. PoCs published by Todor Donev.

AI-analyzed exploit summary This batch script exploits a local privilege escalation vulnerability in Microsoft Windows XP SP2/SP3 by manipulating the system time and scheduling tasks to execute with SYSTEM privileges. The exploit kills the explorer process and schedules multiple interactive commands to gain elevated access.

Description

Microsoft Windows XP - 'tskill' Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC VERIFIED

by Todor Donev · localwindows

https://www.exploit-db.com/exploits/35850

View Code ZIP pw:eip

This batch script exploits a local privilege escalation vulnerability in Microsoft Windows XP SP2/SP3 by manipulating the system time and scheduling tasks to execute with SYSTEM privileges. The exploit kills the explorer process and schedules multiple interactive commands to gain elevated access.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows XP SP2/SP3

Auth required

Prerequisites: Local access to the target system · User-level authentication

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1053 - Scheduled Task/Job

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026