CVE-2018-25373— DVD Photo Slideshow Professional 8.07 Buffer Overflow SEH
Possible ATT&CK Techniques 3AI
T1059 · Command and Scripting Interpreter T1068 · Exploitation for Privilege Escalation T1203 · Exploitation for Client ExecutionAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SocuSoft | DVD Photo Slideshow Professional | 8.07 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-25373
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DVD Photo Slideshow Professional 8.07 Buffer Overflow SEH
Source: NVD (National Vulnerability Database)
Vulnerability Description
SocuSoft DVD Photo Slideshow Professional 8.07 contains a stack-based buffer overflow vulnerability in the registration name field that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft a malicious text file with carefully constructed payload containing junk bytes, SEH chain overwrite, and shellcode, then paste the contents into the Registration Name field via Help > Register to trigger code execution.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
栈缓冲区溢出
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| SocuSoft | DVD Photo Slideshow Professional | 8.07 | - |
II. Public POCs for CVE-2018-25373
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-25373
请登录查看更多情报信息。
Vendor Advisories for CVE-2018-25373 (1)
Exploits & Public PoCs for CVE-2018-25373 (1)
Vendor Pages for CVE-2018-25373 (1)
- Index of /product
Same Patch Batch · SocuSoft · 2026-05-25 · 4 CVEs total
| CVE-2018-25376 | 8.4 HIGH | Socusoft 3GP Photo Slideshow 8.05 Buffer Overflow SEH |
| CVE-2018-25375 | 8.4 HIGH | SocuSoft iPod Photo Slideshow 8.05 Buffer Overflow SEH |
| CVE-2018-25377 | 8.4 HIGH | Flash Slideshow Maker Professional 5.20 Buffer Overflow SEH |
IV. Related Vulnerabilities
Same vendor: SocuSoft
Same weakness: CWE-121
- CVE-2026-9482
Edimax EW-7438RPn formSDHCP stack-based overflow - CVE-2026-9481
Edimax EW-7438RPn formStats stack-based overflow - CVE-2026-9480
Edimax EW-7438RPn formrefresh stack-based overflow - CVE-2026-9479
Edimax EW-7438RPn formLogout stack-based overflow - CVE-2018-25375
SocuSoft iPod Photo Slideshow 8.05 Buffer Overflow SEH
V. Comments for CVE-2018-25373
No comments yet