CVE-2018-25360
Stack-Based Buffer Overflow in Auto PingMaster 1.5
Publication date: 2026-05-25
Last updated on: 2026-05-25
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| agatasoft | auto_pingmaster | 1.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2018-25360 is a stack-based buffer overflow vulnerability found in AgataSoft Auto PingMaster version 1.5. It occurs in the Trace Route host name field, where local attackers can exploit this flaw by creating a specially crafted ping.txt file containing shellcode and jump instructions. When the contents of this malicious file are pasted into the application, the structured exception handling (SEH) pointer is overwritten, allowing the attacker to execute arbitrary code on the affected system.
How can this vulnerability impact me? :
This vulnerability can have serious impacts as it allows local attackers to execute arbitrary code on the affected system. Successful exploitation could lead to full control over the system, enabling attackers to install malware, steal sensitive information, disrupt operations, or escalate privileges. Because the attack requires local access, it primarily threatens users who have the ability to interact directly with the vulnerable application.