CVE-2018-25256— IP TOOLS 2.50 Local Buffer Overflow Denial of Service
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-25256
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IP TOOLS 2.50 Local Buffer Overflow Denial of Service
Source: NVD (National Vulnerability Database)
Vulnerability Description
IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To Addr' fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存写
Source: NVD (National Vulnerability Database)
Vulnerability Title
IP TOOLS 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IP TOOLS是IP TOOLS公司的一个IP地址查看工具。 IP TOOLS 2.50版本存在缓冲区错误漏洞,该漏洞源于SNMP Scanner组件存在本地缓冲区溢出,可能导致本地攻击者通过提供超长输入使应用程序崩溃,造成拒绝服务和SEH覆盖。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2018-25256
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-25256
请登录查看更多情报信息。
IV. Related Vulnerabilities
V. Comments for CVE-2018-25256
No comments yet