EIP-2026-119132

PRE-CVE

SIEMENS Solid Edge ST4 SEListCtrlX - ActiveX Remote Code Execution (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119132. PoCs published by Metasploit.

AI-analyzed exploit summary This Metasploit module exploits a memory corruption vulnerability in the SIEMENS Solid Edge ST4 SEListCtrlX ActiveX control via the NumChildren() and DeleteItem() methods to achieve remote code execution on Windows systems.

Description

SIEMENS Solid Edge ST4 SEListCtrlX - ActiveX Remote Code Execution (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/28724

View Code ZIP pw:eip

This Metasploit module exploits a memory corruption vulnerability in the SIEMENS Solid Edge ST4 SEListCtrlX ActiveX control via the NumChildren() and DeleteItem() methods to achieve remote code execution on Windows systems.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: SIEMENS Solid Edge ST4 SEListCtrlX ActiveX (104.0.0.82)

No auth needed

Prerequisites: Target must have SIEMENS Solid Edge ST4 installed · Target must use Internet Explorer 6-9 · JavaScript must be enabled

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026