EIP-2026-118403

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118403. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages the Dell IT Assistant ActiveX control's readRegVal() method to remotely dump Windows registry values, specifically BIOS information, and exfiltrate them via URL redirection. The PoC demonstrates an information leakage vulnerability by reading sensitive registry keys and sending them to an attacker-controlled server.

Description

Dell IT Assistant - detectIESettingsForITA.ocx ActiveX Control

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · htmlremotewindows

https://www.exploit-db.com/exploits/17557

View Code ZIP pw:eip

This exploit leverages the Dell IT Assistant ActiveX control's readRegVal() method to remotely dump Windows registry values, specifically BIOS information, and exfiltrate them via URL redirection. The PoC demonstrates an information leakage vulnerability by reading sensitive registry keys and sending them to an attacker-controlled server.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Dell IT Assistant detectIESettingsForITA.ocx ActiveX Control (Version 8.1.0.0)

No auth needed

Prerequisites: Victim must have the vulnerable Dell IT Assistant ActiveX control installed and enabled in Internet Explorer · Attacker must lure victim to a malicious webpage hosting the exploit

MITRE ATT&CK

T1119 - Automated Collection T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Dell IT Assistant - detectIESettingsForITA.ocx ActiveX Control

Exploitation Summary

Description

Exploits (1)

Details