EIP-2026-118426
PRE-CVEDiskBoss Enterprise - GET Buffer Overflow (Metasploit)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-118426. PoCs published by Metasploit.
AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in DiskBoss Enterprise's web interface via a maliciously crafted HTTP GET request. It includes SEH-based exploitation with precise offsets and return addresses for versions 7.4.28 and 7.5.12.
Description
DiskBoss Enterprise - GET Buffer Overflow (Metasploit)
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/41079
This Metasploit module exploits a stack-based buffer overflow in DiskBoss Enterprise's web interface via a maliciously crafted HTTP GET request. It includes SEH-based exploitation with precise offsets and return addresses for versions 7.4.28 and 7.5.12.
Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:
DiskBoss Enterprise v7.4.28 and v7.5.12
No auth needed
Prerequisites:
Network access to the DiskBoss web interface · Target running vulnerable version of DiskBoss Enterprise
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026