CVE-2018-25255

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.4 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

10-Strike LANState 8.8 contains a local buffer overflow vulnerability in structured exception handling that allows local attackers to execute arbitrary code by crafting malicious LSM map files. Attackers can create a specially formatted LSM file with a payload in the ObjCaption parameter that overflows the buffer, overwrites the SEH chain, and executes shellcode when the file is opened in the application.

Vulnerability Details

Published Date

April 04, 2026

Last Modified

April 07, 2026

CWE ID

CWE-787

Source

NVD

Vendor

10-Strike

Product

Strike LANState

External References

https://www.10-strike.com/lanstate/download.shtml
https://www.10-strike.com/products.shtml
https://www.exploit-db.com/exploits/45086
https://www.vulncheck.com/advisories/10-strike-lanstate-local-buffer-overflow-seh

CVE-2018-25255

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment