EIP-2026-119220

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119220. PoCs published by Dr_IDE.

AI-analyzed exploit summary This exploit targets a Unicode buffer overflow vulnerability in Trend Micro Internet Security Pro 2010's ActiveX control (UfPBCtrl.DLL). It uses a heap spray technique to achieve remote code execution by overwriting the EIP with a controlled address and executing shellcode (calc.exe payload).

Description

Trend Micro Internet Security 2010 - 'UfPBCtrl.DLL' ActiveX Remote Command Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dr_IDE · htmlremotewindows

https://www.exploit-db.com/exploits/14885

View Code ZIP pw:eip

This exploit targets a Unicode buffer overflow vulnerability in Trend Micro Internet Security Pro 2010's ActiveX control (UfPBCtrl.DLL). It uses a heap spray technique to achieve remote code execution by overwriting the EIP with a controlled address and executing shellcode (calc.exe payload).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Trend Micro Internet Security Pro 2010 (UfPBCtrl.DLL ver 17.50.0.1366 / 17.50.0.1647)

No auth needed

Prerequisites: Victim must visit a malicious webpage · ActiveX control must be enabled · Protection Against Viruses & Spyware option must be disabled for local testing

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Trend Micro Internet Security 2010 - 'UfPBCtrl.DLL' ActiveX Remote Command Execution

Exploitation Summary

Description

Exploits (1)

Details