EIP-2026-119661

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119661. PoCs published by hyp3rlinx.

AI-analyzed exploit summary This exploit demonstrates an XML External Entity (XXE) vulnerability in Microsoft Windows Media Center 2002, allowing remote information disclosure by bypassing the Mark-of-the-Web (MotW) security feature. The PoC includes a crafted .mcl file and a malicious DTD file hosted on an attacker-controlled server to exfiltrate local file contents.

Description

Microsoft Windows Media Center 2002 - XML External Entity MotW Bypass

Exploits (1)

exploitdb WORKING POC VERIFIED

by hyp3rlinx · textlocalxml

https://www.exploit-db.com/exploits/47740

View Code ZIP pw:eip

This exploit demonstrates an XML External Entity (XXE) vulnerability in Microsoft Windows Media Center 2002, allowing remote information disclosure by bypassing the Mark-of-the-Web (MotW) security feature. The PoC includes a crafted .mcl file and a malicious DTD file hosted on an attacker-controlled server to exfiltrate local file contents.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows Media Center 2002 (Windows 7, possibly Windows 8.1 Pro)

No auth needed

Prerequisites: Attacker-controlled server to host malicious DTD file · Victim downloads and opens the crafted .mcl file

MITRE ATT&CK

T1195.002 - Compromise Software Supply Chain

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Microsoft Windows Media Center 2002 - XML External Entity MotW Bypass

Exploitation Summary

Description

Exploits (1)

Details