EIP-2026-117911

PRE-CVE

Slayer 2.4 - 'skin' Universal Buffer Overflow (SEH)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117911. PoCs published by SuNHouSe2.

AI-analyzed exploit summary This exploit targets a SEH overflow vulnerability in an unspecified software, likely a media player or similar application, by crafting a malicious .ini file with a structured payload. It uses a standard SEH overwrite technique with a jump back to the shellcode, which executes calc.exe as a proof of concept.

Description

Slayer 2.4 - 'skin' Universal Buffer Overflow (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED

by SuNHouSe2 · pythonlocalwindows

https://www.exploit-db.com/exploits/8789

View Code ZIP pw:eip

This exploit targets a SEH overflow vulnerability in an unspecified software, likely a media player or similar application, by crafting a malicious .ini file with a structured payload. It uses a standard SEH overwrite technique with a jump back to the shellcode, which executes calc.exe as a proof of concept.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Unknown (likely a media player or skin-based application)

No auth needed

Prerequisites: Victim must open the malicious .ini file in the vulnerable software

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026