EIP-2026-118236

PRE-CVE

Ada Image Server 0.6.7 - 'imgsrv.exe' Remote Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118236. PoCs published by blake.

AI-analyzed exploit summary This exploit targets a SEH overwrite vulnerability in Ada Image Server v0.6.6, delivering a bind shell payload via a crafted HTTP GET request. It leverages a known module (msvcrt.dll) for SEH bypass on Windows XP SP1.

Description

Ada Image Server 0.6.7 - 'imgsrv.exe' Remote Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by blake · pythonremotewindows

https://www.exploit-db.com/exploits/10056

View Code ZIP pw:eip

This exploit targets a SEH overwrite vulnerability in Ada Image Server v0.6.6, delivering a bind shell payload via a crafted HTTP GET request. It leverages a known module (msvcrt.dll) for SEH bypass on Windows XP SP1.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Ada Image Server v0.6.6

No auth needed

Prerequisites: Network access to the target server · Ada Image Server v0.6.6 running on Windows XP SP1

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026