EIP-2026-118894

PRE-CVE

Microsoft Windows XP/2000 - Help File Relative Path Remote Command Execution

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118894. PoCs published by Secumania.

AI-analyzed exploit summary This is a vulnerability writeup describing a remote command-execution issue in Microsoft Windows due to unsafe handling of help files. The vulnerability can be exploited by tricking a victim into loading crafted '.chm' files from a specific directory.

Description

Microsoft Windows XP/2000 - Help File Relative Path Remote Command Execution

Exploits (1)

exploitdb WRITEUP VERIFIED
by Secumania · textremotewindows
https://www.exploit-db.com/exploits/33750

This is a vulnerability writeup describing a remote command-execution issue in Microsoft Windows due to unsafe handling of help files. The vulnerability can be exploited by tricking a victim into loading crafted '.chm' files from a specific directory.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Microsoft Windows 2000 and XP
No auth needed
Prerequisites: Victim interaction to load crafted '.chm' files
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026