EIP-2026-119559
PRE-CVETeamViewer 11 < 13 (Windows 10 x86) - Inline Hooking / Direct Memory Modification Permission Change
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-119559. PoCs published by gellin.
AI-analyzed exploit summary This is a functional proof-of-concept DLL that uses inline hooking and direct memory modification to bypass TeamViewer permissions, enabling unauthorized control features. It employs signature scanning to locate and hijack pointers in TeamViewer's code.
Description
TeamViewer 11 < 13 (Windows 10 x86) - Inline Hooking / Direct Memory Modification Permission Change
Exploits (1)
exploitdb
WORKING POC
by gellin · localwindows_x86
https://www.exploit-db.com/exploits/43366
This is a functional proof-of-concept DLL that uses inline hooking and direct memory modification to bypass TeamViewer permissions, enabling unauthorized control features. It employs signature scanning to locate and hijack pointers in TeamViewer's code.
Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target:
TeamViewer x86 Version 13.0.5058
No auth needed
Prerequisites:
Manual DLL injection into TeamViewer.exe · Windows 10 environment
MITRE ATT&CK
mistral-large-3 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026