EIP-2026-118814

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118814. PoCs published by Karol Wiesek.

AI-analyzed exploit summary This is a vulnerability writeup describing a URI handling flaw in multiple vendors' products, where a '-' character preceding the hostname allows passing arbitrary options to protocol handlers like telnet, rlogin, ssh, and mailto. Successful exploitation could lead to arbitrary file creation/modification or denial of service in the browser context.

Description

Microsoft Internet Explorer 5 / Firefox 0.8 / OmniWeb 4.x - URI Protocol Handler Arbitrary File Creation/Modification

Exploits (1)

exploitdb WRITEUP VERIFIED

by Karol Wiesek · textremotewindows

https://www.exploit-db.com/exploits/24116

View Code ZIP pw:eip

This is a vulnerability writeup describing a URI handling flaw in multiple vendors' products, where a '-' character preceding the hostname allows passing arbitrary options to protocol handlers like telnet, rlogin, ssh, and mailto. Successful exploitation could lead to arbitrary file creation/modification or denial of service in the browser context.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Multiple vendors' products (unspecified versions)

No auth needed

Prerequisites: User interaction required to trigger malicious URI

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Microsoft Internet Explorer 5 / Firefox 0.8 / OmniWeb 4.x - URI Protocol Handler Arbitrary File Creation/Modification

Exploitation Summary

Description

Exploits (1)

Details