EIP-2026-118722

PRE-CVE

LeadTools Imaging LEADSmtp - ActiveX Control 'SaveMessage()' Insecure Method

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118722. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary This exploit leverages an insecure method in the LEADTOOLS Imaging LEADSmtp ActiveX control to overwrite files in the context of the affected application (typically Internet Explorer). The vulnerability is triggered via the SaveMessage method, allowing arbitrary file creation or overwrite with user-level privileges.

Description

LeadTools Imaging LEADSmtp - ActiveX Control 'SaveMessage()' Insecure Method

Exploits (1)

exploitdb WORKING POC VERIFIED

by High-Tech Bridge SA · htmlremotewindows

https://www.exploit-db.com/exploits/35880

View Code ZIP pw:eip

This exploit leverages an insecure method in the LEADTOOLS Imaging LEADSmtp ActiveX control to overwrite files in the context of the affected application (typically Internet Explorer). The vulnerability is triggered via the SaveMessage method, allowing arbitrary file creation or overwrite with user-level privileges.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: LEADTOOLS Imaging LEADSmtp ActiveX control

No auth needed

Prerequisites: Victim must visit a malicious webpage hosting the exploit · ActiveX control must be installed and enabled in the browser

MITRE ATT&CK

T1218 - System Binary Proxy Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026