EIP-2026-118389

PRE-CVE

Cool iPhone Ringtone Maker 2.2.3 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118389. PoCs published by anT!-Tr0J4n.

AI-analyzed exploit summary This exploit demonstrates a DLL hijacking vulnerability in Cool iPhone Ringtone Maker 2.2.3. The code provides a malicious dwmapi.dll that, when placed in the same directory as a file opened by the application, executes arbitrary code (calc.exe in this case).

Description

Cool iPhone Ringtone Maker 2.2.3 - 'dwmapi.dll' DLL Loading Arbitrary Code Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by anT!-Tr0J4n · cremotewindows

https://www.exploit-db.com/exploits/34869

View Code ZIP pw:eip

This exploit demonstrates a DLL hijacking vulnerability in Cool iPhone Ringtone Maker 2.2.3. The code provides a malicious dwmapi.dll that, when placed in the same directory as a file opened by the application, executes arbitrary code (calc.exe in this case).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Cool iPhone Ringtone Maker 2.2.3

No auth needed

Prerequisites: Victim must open a file from a directory containing the malicious DLL · Attacker must place the malicious DLL in the same directory as the target file

MITRE ATT&CK

T1574.001 - DLL

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026