EIP-2026-119088

PRE-CVE

Remote Desktop Web Access - Authentication Timing Attack (Metasploit Module)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119088. PoCs published by Matthew Dunn.

AI-analyzed exploit summary This script is a Metasploit module designed to enumerate valid usernames and passwords against a Microsoft RDP Web Client by performing timing-based checks during authentication attempts. It includes functionality to verify service availability and automatically enumerate the Active Directory domain using NTLM challenges.

Description

Remote Desktop Web Access - Authentication Timing Attack (Metasploit Module)

Exploits (1)

exploitdb SCANNER

by Matthew Dunn · pythonremotewindows

https://www.exploit-db.com/exploits/49599

View Code ZIP pw:eip

This script is a Metasploit module designed to enumerate valid usernames and passwords against a Microsoft RDP Web Client by performing timing-based checks during authentication attempts. It includes functionality to verify service availability and automatically enumerate the Active Directory domain using NTLM challenges.

Classification

Scanner 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Microsoft RDP Web Client

No auth needed

Prerequisites: Network access to the target RDP Web Client · Valid target URI and port

MITRE ATT&CK

T1110 - Brute Force T1087 - Account Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026