EIP-2026-118649
PRE-CVEHTC Sync Manager - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-118649. PoCs published by Iranian_Dark_Coders_Team.
AI-analyzed exploit summary This exploit demonstrates a DLL hijacking vulnerability in HTC Sync Manager. The PoC is a malicious DLL that, when loaded by the application, executes arbitrary code (in this case, launching calc.exe).
Description
HTC Sync Manager - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Iranian_Dark_Coders_Team · textremotewindows
https://www.exploit-db.com/exploits/38694
This exploit demonstrates a DLL hijacking vulnerability in HTC Sync Manager. The PoC is a malicious DLL that, when loaded by the application, executes arbitrary code (in this case, launching calc.exe).
Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:
HTC Sync Manager 2.1.46.0
No auth needed
Prerequisites:
Victim must open a file from a network share containing the malicious DLL
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026