CVE-2018-25426
WinMTR 0.91 Buffer Overflow Denial of Service
Publication date: 2026-05-30
Last updated on: 2026-05-30
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
WinMTR version 0.91 contains a denial of service vulnerability caused by a buffer overflow. Attackers can create a specially crafted input file containing a 238-byte buffer of repeated characters that triggers this overflow. When WinMTR processes this malformed payload file, the buffer overflow causes the application to crash.
How can this vulnerability impact me? :
This vulnerability can cause WinMTR to crash unexpectedly when processing a maliciously crafted input file. This denial of service (DoS) condition disrupts the normal operation of the application, potentially preventing users from performing network diagnostics and troubleshooting.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by observing if WinMTR 0.91 crashes when processing input files. Specifically, a malformed payload file containing a 238-byte buffer of repeated characters (such as the letter 'A') triggers the buffer overflow causing the crash.
To detect the vulnerability, you can attempt to reproduce the crash by creating a test file with 238 repeated characters and loading it into WinMTR 0.91. For example, create a file named "exp.txt" containing 238 'A' characters and then open it with WinMTR to see if the application crashes.
- On Windows command line, create the payload file with: powershell -Command "'A' * 238 | Out-File -Encoding ascii exp.txt"
- Then, open WinMTR 0.91 and load the "exp.txt" file to check if the application crashes, indicating the presence of the vulnerability.
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation step is to avoid using WinMTR version 0.91 or earlier versions that are vulnerable to this buffer overflow denial of service.
If you must use WinMTR, do not open or process any untrusted or malformed input files that could contain the specially crafted 238-byte payload designed to crash the application.
Additionally, consider upgrading to a later version of WinMTR if available, or use alternative network diagnostic tools that are not affected by this vulnerability.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided information does not include any details on how the WinMTR 0.91 denial of service vulnerability (CVE-2018-25426) impacts compliance with common standards and regulations such as GDPR or HIPAA.