EIP-2026-118893

PRE-CVE

Microsoft Windows XP - TCP Packet Information Leakage

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118893. PoCs published by Michal Zalewski.

AI-analyzed exploit summary The document describes an information leakage vulnerability in Microsoft Windows XP where SYN packets may contain uninitialized URG flags, potentially exposing sensitive memory contents. The provided logs demonstrate the issue with varying URG values in TCP packets.

Description

Microsoft Windows XP - TCP Packet Information Leakage

Exploits (1)

exploitdb WRITEUP VERIFIED

by Michal Zalewski · textremotewindows

https://www.exploit-db.com/exploits/23093

View Code ZIP pw:eip

The document describes an information leakage vulnerability in Microsoft Windows XP where SYN packets may contain uninitialized URG flags, potentially exposing sensitive memory contents. The provided logs demonstrate the issue with varying URG values in TCP packets.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows XP

No auth needed

Prerequisites: Network access to observe SYN packets from a Windows XP system

MITRE ATT&CK

T1040 - Network Sniffing

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026