EIP-2026-118661

PRE-CVE

Hummingbird Deployment Wizard 10 - 'DeployRun.dll' ActiveX Control Multiple Security Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118661. PoCs published by shinnai.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Hummingbird Deployment Wizard 10 ActiveX control (DeployRun.dll) by leveraging insecure methods to execute arbitrary commands (e.g., calc.exe) and modify registry keys via VBScript in an HTML context.

Description

Hummingbird Deployment Wizard 10 - 'DeployRun.dll' ActiveX Control Multiple Security Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmlremotewindows

https://www.exploit-db.com/exploits/32493

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in Hummingbird Deployment Wizard 10 ActiveX control (DeployRun.dll) by leveraging insecure methods to execute arbitrary commands (e.g., calc.exe) and modify registry keys via VBScript in an HTML context.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Hummingbird Deployment Wizard 10 10.0.0.44

No auth needed

Prerequisites: Victim must visit a malicious HTML page · ActiveX control must be enabled in the browser

MITRE ATT&CK

T1189 - Drive-by Compromise T1218 - System Binary Proxy Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026