EIP-2026-119310
PRE-CVEXBMC 8.10 - 'HEAD' Remote Buffer Overflow (SEH)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-119310. PoCs published by His0k4.
AI-analyzed exploit summary This exploit targets a remote buffer overflow vulnerability in XBMC 8.10 via a maliciously crafted HEAD request. It leverages SEH overwrite with a universal return address from zlib1.dll and executes a calc.exe payload using Metasploit's PexAlphaNum encoder.
Description
XBMC 8.10 - 'HEAD' Remote Buffer Overflow (SEH)
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by His0k4 · pythonremotewindows
https://www.exploit-db.com/exploits/8363
This exploit targets a remote buffer overflow vulnerability in XBMC 8.10 via a maliciously crafted HEAD request. It leverages SEH overwrite with a universal return address from zlib1.dll and executes a calc.exe payload using Metasploit's PexAlphaNum encoder.
Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:
XBMC 8.10
No auth needed
Prerequisites:
Network access to XBMC HTTP server on port 80
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026