EIP-2026-118608

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118608. PoCs published by anonymous.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the GlobalLink ActiveX control (HanGamePluginCn18.HanGamePluginCn18.1) by crafting a malicious buffer to trigger arbitrary code execution (calc.exe) via shellcode. The exploit leverages heap spraying and a long string of 'A's to overwrite the return address.

Description

GlobalLink 2.6.1.2 - 'HanGamePlugincn18.dll' ActiveX Control Multiple Buffer Overflow Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · htmlremotewindows

https://www.exploit-db.com/exploits/31113

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the GlobalLink ActiveX control (HanGamePluginCn18.HanGamePluginCn18.1) by crafting a malicious buffer to trigger arbitrary code execution (calc.exe) via shellcode. The exploit leverages heap spraying and a long string of 'A's to overwrite the return address.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: GlobalLink 2.8.1.2 beta and 2.6.1.29

No auth needed

Prerequisites: Victim must have the vulnerable ActiveX control installed and enabled in Internet Explorer

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

GlobalLink 2.6.1.2 - 'HanGamePlugincn18.dll' ActiveX Control Multiple Buffer Overflow Vulnerabilities

Exploitation Summary

Description

Exploits (1)

Details