EIP-2026-117763

PRE-CVE

Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117763. PoCs published by mr.pr0n.

AI-analyzed exploit summary This exploit demonstrates a local buffer overflow in Photodex ProShow Producer v5.0.3256, leveraging an egghunter and reverse TCP shellcode to achieve remote code execution. The payload is crafted to overwrite SEH and trigger execution via a malformed 'load' file.

Description

Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by mr.pr0n · perllocalwindows

https://www.exploit-db.com/exploits/20036

View Code ZIP pw:eip

This exploit demonstrates a local buffer overflow in Photodex ProShow Producer v5.0.3256, leveraging an egghunter and reverse TCP shellcode to achieve remote code execution. The payload is crafted to overwrite SEH and trigger execution via a malformed 'load' file.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Photodex ProShow Producer v5.0.3256

No auth needed

Prerequisites: Local access to place the 'load' file in the application directory · Application execution by the victim

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026