EIP-2026-119162

PRE-CVE

SopCast 3.2.9 - Remote Command Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119162. PoCs published by sud0.

AI-analyzed exploit summary This is a functional exploit for a stack-based buffer overflow (SEH overwrite) in SopCast 3.2.9, leveraging heap spraying to achieve reliable exploitation. The PoC triggers the vulnerability via the 'ChannelName' and 'SetSopAddress' methods of the SopCast ActiveX control, leading to arbitrary code execution (MessageBox shellcode).

Description

SopCast 3.2.9 - Remote Command Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by sud0 · htmlremotewindows

https://www.exploit-db.com/exploits/14600

View Code ZIP pw:eip

This is a functional exploit for a stack-based buffer overflow (SEH overwrite) in SopCast 3.2.9, leveraging heap spraying to achieve reliable exploitation. The PoC triggers the vulnerability via the 'ChannelName' and 'SetSopAddress' methods of the SopCast ActiveX control, leading to arbitrary code execution (MessageBox shellcode).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SopCast 3.2.9

No auth needed

Prerequisites: Internet Explorer 7 · Windows XP SP3 · SopCast ActiveX control installed · Internet connection

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026