EIP-2026-119268

PRE-CVE

WebDrive 12.2 (Build #4172) - Remote Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119268. PoCs published by metacom.

AI-analyzed exploit summary This PoC demonstrates a buffer overflow vulnerability in WebDrive 12.2 (build #4172) by crafting a malicious URL with an excessively long string of 'A' characters (70,000 bytes). The exploit targets multiple protocols (WebDAV, FTP, SFTP, etc.) and includes detailed crash analysis from WinDBG, confirming memory corruption and invalid exception stack states.

Description

WebDrive 12.2 (Build #4172) - Remote Buffer Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by metacom · pythonremotewindows

https://www.exploit-db.com/exploits/37165

View Code ZIP pw:eip

This PoC demonstrates a buffer overflow vulnerability in WebDrive 12.2 (build #4172) by crafting a malicious URL with an excessively long string of 'A' characters (70,000 bytes). The exploit targets multiple protocols (WebDAV, FTP, SFTP, etc.) and includes detailed crash analysis from WinDBG, confirming memory corruption and invalid exception stack states.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: WebDrive 12.2 (build #4172) 32-bit

No auth needed

Prerequisites: WebDrive installed and configured on Windows 7 Ultimate

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026