EIP-2026-119035

PRE-CVE

Photodex ProShow Producer - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119035. PoCs published by Julien Ahrens.

AI-analyzed exploit summary This exploit demonstrates DLL injection via a crafted 'ddraw.dll' file, which is loaded by Photodex ProShow Producer when a malicious library file is opened. The DLL displays a message box upon execution, confirming arbitrary code execution in the context of the user.

Description

Photodex ProShow Producer - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by Julien Ahrens · textremotewindows

https://www.exploit-db.com/exploits/38330

View Code ZIP pw:eip

This exploit demonstrates DLL injection via a crafted 'ddraw.dll' file, which is loaded by Photodex ProShow Producer when a malicious library file is opened. The DLL displays a message box upon execution, confirming arbitrary code execution in the context of the user.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Photodex ProShow Producer 5.0.3297

No auth needed

Prerequisites: Victim must open a crafted library file in the vulnerable application

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1195 - Supply Chain Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026