EIP-2026-118858

PRE-CVE

Microsoft Outlook 5.5/2000 - Web Access HTML Attachment Script Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118858. PoCs published by Hugo Vazquez.

AI-analyzed exploit summary This exploit leverages a vulnerability in Outlook Web Access (OWA) where HTML email attachments are not filtered if the 'did' parameter is omitted, allowing script execution. The script uses an ActiveXObject to perform a TRACE request, extracting and decoding Base64-encoded credentials from the response.

Description

Microsoft Outlook 5.5/2000 - Web Access HTML Attachment Script Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by Hugo Vazquez · htmlremotewindows

https://www.exploit-db.com/exploits/22869

View Code ZIP pw:eip

This exploit leverages a vulnerability in Outlook Web Access (OWA) where HTML email attachments are not filtered if the 'did' parameter is omitted, allowing script execution. The script uses an ActiveXObject to perform a TRACE request, extracting and decoding Base64-encoded credentials from the response.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Outlook Web Access (OWA)

No auth needed

Prerequisites: Victim must open a malicious HTML email attachment in OWA

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026