EIP-2026-118268

PRE-CVE

AOL 9.5 - Phobos.Playlist 'Import()' Remote Buffer Overflow (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118268. PoCs published by Trancer.

AI-analyzed exploit summary This is a functional Metasploit exploit for a stack-based buffer overflow in AOL 9.5's Phobos.Playlist ActiveX control via the Import() method. It generates an HTML file that triggers the vulnerability when opened locally, leading to arbitrary code execution.

Description

AOL 9.5 - Phobos.Playlist 'Import()' Remote Buffer Overflow (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Trancer · rubyremotewindows

https://www.exploit-db.com/exploits/11257

View Code ZIP pw:eip

This is a functional Metasploit exploit for a stack-based buffer overflow in AOL 9.5's Phobos.Playlist ActiveX control via the Import() method. It generates an HTML file that triggers the vulnerability when opened locally, leading to arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AOL 9.5 (Phobos.dll 9.5.0.1)

No auth needed

Prerequisites: Victim must open the generated HTML file locally · AOL 9.5 with vulnerable Phobos.dll installed

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026