EIP-2026-118672

PRE-CVE

Iconics GENESIS32 9.21.201.01 - Integer Overflow (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118672. PoCs published by Metasploit.

AI-analyzed exploit summary This Metasploit module exploits an integer overflow vulnerability in Iconics GENESIS32's GenBroker service (version 9.21.201.01) via opcode 0x4b0, leading to arbitrary remote code execution. It includes DEP bypass and process migration techniques to ensure reliability.

Description

Iconics GENESIS32 9.21.201.01 - Integer Overflow (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17543

View Code ZIP pw:eip

This Metasploit module exploits an integer overflow vulnerability in Iconics GENESIS32's GenBroker service (version 9.21.201.01) via opcode 0x4b0, leading to arbitrary remote code execution. It includes DEP bypass and process migration techniques to ensure reliability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: Iconics GENESIS32 version 9.21.201.01

No auth needed

Prerequisites: Network access to port 38080 · Vulnerable version of Iconics GENESIS32

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026