EIP-2026-118696

PRE-CVE

Intrasrv 1.0 - Remote Buffer Overflow (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118696. PoCs published by Metasploit.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow vulnerability in Intrasrv 1.0 by sending a maliciously crafted HTTP request with an oversized Host header, leading to arbitrary remote code execution. It uses an egghunter technique to locate and execute the payload in memory.

Description

Intrasrv 1.0 - Remote Buffer Overflow (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/27606

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow vulnerability in Intrasrv 1.0 by sending a maliciously crafted HTTP request with an oversized Host header, leading to arbitrary remote code execution. It uses an egghunter technique to locate and execute the payload in memory.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Intrasrv Simple Web Server 1.0

No auth needed

Prerequisites: Network access to the target server · Intrasrv 1.0 running on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026