EIP-2026-118803

PRE-CVE

Microsoft Internet Explorer - 'wshom.ocx' ActiveX Control Remote Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118803. PoCs published by germaya_x & D3V!L FUCKER.

AI-analyzed exploit summary This exploit leverages an ActiveX control vulnerability to execute arbitrary commands on the target system. It specifically attempts to launch calc.exe via the vulnerable ActiveX object.

Description

Microsoft Internet Explorer - 'wshom.ocx' ActiveX Control Remote Code Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by germaya_x & D3V!L FUCKER · htmlremotewindows

https://www.exploit-db.com/exploits/11151

View Code ZIP pw:eip

This exploit leverages an ActiveX control vulnerability to execute arbitrary commands on the target system. It specifically attempts to launch calc.exe via the vulnerable ActiveX object.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Internet Explorer (all versions)

No auth needed

Prerequisites: Victim must visit a malicious webpage using Internet Explorer · ActiveX controls must be enabled

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026