EIP-2026-118648

PRE-CVE

HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118648. PoCs published by rgod.

AI-analyzed exploit summary This is a stack-based buffer overflow PoC targeting the HP Photo Creative v2.x audio.Record.1 ActiveX control (ContentMan.dll). It exploits an unchecked buffer in the Resample method to execute arbitrary shellcode, leading to remote code execution.

Description

HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · htmlremotewindows

https://www.exploit-db.com/exploits/15885

View Code ZIP pw:eip

This is a stack-based buffer overflow PoC targeting the HP Photo Creative v2.x audio.Record.1 ActiveX control (ContentMan.dll). It exploits an unchecked buffer in the Resample method to execute arbitrary shellcode, leading to remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP Photo Creative v2.x (ContentMan.dll 1.0.0.4272)

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer with the vulnerable ActiveX control installed and enabled

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026