CVE-2018-25360— AgataSoft Auto PingMaster 1.5 Buffer Overflow SEH
Possible ATT&CK Techniques 3AI
T1055 · Process Injection T1059 · Command and Scripting Interpreter T1203 · Exploitation for Client ExecutionAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Agatasoft | Auto PingMaster | 1.5 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-25360
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AgataSoft Auto PingMaster 1.5 Buffer Overflow SEH
Source: NVD (National Vulnerability Database)
Vulnerability Description
AgataSoft Auto PingMaster 1.5 contains a stack-based buffer overflow vulnerability in the Trace Route host name field that allows local attackers to execute arbitrary code by triggering structured exception handling. Attackers can craft a malicious ping.txt file with shellcode and jump instructions that overwrite the SEH handler pointer to achieve code execution when the file contents are pasted into the application.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
栈缓冲区溢出
Source: NVD (National Vulnerability Database)
Vulnerability Title
AgataSoft Auto PingMaster 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AgataSoft Auto PingMaster是AgataSoft公司的一款网络监控工具,支持主机连通性检测、延迟监测与故障告警功能。 AgataSoft Auto PingMaster 1.5版本存在安全漏洞,该漏洞源于Trace Route主机名字段存在基于栈的缓冲区溢出,可能导致本地攻击者通过触发结构化异常处理来执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Agatasoft | Auto PingMaster | 1.5 | - |
II. Public POCs for CVE-2018-25360
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-25360
请登录查看更多情报信息。
Vendor Advisories for CVE-2018-25360 (1)
- 🔗 AgataSoft Auto PingMaster 1.5 Buffer Overflow SEH | Advisories | VulnCheckthird-party-advisory
Exploits & Public PoCs for CVE-2018-25360 (1)
IV. Related Vulnerabilities
Same weakness: CWE-121
- CVE-2026-10063
TRENDnet TEW-432BRP formWPS stack-based overflow - CVE-2026-10062
TRENDnet TEW-432BRP formSetRoute stack-based overflow - CVE-2026-40528
OpenSC < 0.27.0 Buffer Overrun in do_key_value() via profile - CVE-2026-40510
OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_hi - CVE-2026-9038
Stack-based buffer overflow in XCharge C6
V. Comments for CVE-2018-25360
No comments yet