EIP-2026-119631

PRE-CVE

Dropbox Desktop Client 9.4.49 (x64) - Local Credentials Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119631. PoCs published by Yakir Wizman.

AI-analyzed exploit summary This PoC exploits a local credentials disclosure vulnerability in Dropbox Desktop Client v9.4.49 by scanning the process memory for plaintext username and password strings. It uses the winappdbg library to read memory and extract credentials stored in plaintext.

Description

Dropbox Desktop Client 9.4.49 (x64) - Local Credentials Disclosure

Exploits (1)

exploitdb WORKING POC

by Yakir Wizman · pythonlocalwindows_x86-64

https://www.exploit-db.com/exploits/40348

View Code ZIP pw:eip

This PoC exploits a local credentials disclosure vulnerability in Dropbox Desktop Client v9.4.49 by scanning the process memory for plaintext username and password strings. It uses the winappdbg library to read memory and extract credentials stored in plaintext.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Dropbox Desktop Client v9.4.49 (64bit)

No auth needed

Prerequisites: Local access to the target system · Dropbox Desktop Client v9.4.49 running · User must be logged in to Dropbox

MITRE ATT&CK

T1003 - OS Credential Dumping

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026