EIP-2026-118346

PRE-CVE

CamShot 1.2 - Overwrite (SEH)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118346. PoCs published by tecnik.

AI-analyzed exploit summary This exploit targets a SEH overwrite vulnerability in CamShot software by sending a crafted HTTP GET request with a long string of 'A's followed by a short jump, SEH overwrite, NOPs, and ALPHA3-encoded shellcode to execute calc.exe.

Description

CamShot 1.2 - Overwrite (SEH)

Exploits (1)

exploitdb WORKING POC VERIFIED
by tecnik · pythonremotewindows
https://www.exploit-db.com/exploits/11272

This exploit targets a SEH overwrite vulnerability in CamShot software by sending a crafted HTTP GET request with a long string of 'A's followed by a short jump, SEH overwrite, NOPs, and ALPHA3-encoded shellcode to execute calc.exe.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CamShot (version unspecified)
No auth needed
Prerequisites: Network access to target · CamShot service running on port 80
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026