EIP-2026-117683

PRE-CVE

NetIQ/Microfocus Performance Endpoint v5.1 - remote root/SYSTEM exploit

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117683. PoCs published by Neil Kettle.

AI-analyzed exploit summary This is a functional remote exploit for NetIQ/Microfocus Performance Endpoint v5.1, leveraging a buffer overflow vulnerability to achieve remote code execution (RCE) as root/SYSTEM. The exploit includes shellcode for both x86 and SPARC architectures, targeting multiple platforms (Windows, Solaris, FreeBSD).

Description

NetIQ/Microfocus Performance Endpoint v5.1 - remote root/SYSTEM exploit

Exploits (1)

exploitdb WORKING POC

by Neil Kettle · clocalwindows

https://www.exploit-db.com/exploits/51199

View Code ZIP pw:eip

This is a functional remote exploit for NetIQ/Microfocus Performance Endpoint v5.1, leveraging a buffer overflow vulnerability to achieve remote code execution (RCE) as root/SYSTEM. The exploit includes shellcode for both x86 and SPARC architectures, targeting multiple platforms (Windows, Solaris, FreeBSD).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NetIQ/Microfocus Performance Endpoint <=5.1

No auth needed

Prerequisites: Network access to the target's endpoint service (port 10115) · Vulnerable version of NetIQ Performance Endpoint

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026