EIP-2026-118668

PRE-CVE

IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118668. PoCs published by Naser Farhadi.

AI-analyzed exploit summary This exploit leverages a VBScript-based OLE Automation Array vulnerability (similar to CVE-2014-6332) to achieve remote code execution on IBM Security AppScan Standard <= 9.0.2. It serves a malicious payload via a Python HTTP server and executes it using PowerShell.

Description

IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution

Exploits (1)

exploitdb WORKING POC VERIFIED
by Naser Farhadi · pythonremotewindows
https://www.exploit-db.com/exploits/37163

This exploit leverages a VBScript-based OLE Automation Array vulnerability (similar to CVE-2014-6332) to achieve remote code execution on IBM Security AppScan Standard <= 9.0.2. It serves a malicious payload via a Python HTTP server and executes it using PowerShell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IBM Security AppScan Standard <= 9.0.2
No auth needed
Prerequisites: Victim must visit the attacker-controlled HTTP server · VBScript must be enabled in the target environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026