CVE-2018-25217

HIGH

PDF Explorer 1.5.66.2 Structured Exception Handler Local Code Execution

Title source: cna

Description

PDF Explorer 1.5.66.2 contains a structured exception handler (SEH) overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH records with malicious data. Attackers can craft a payload with buffer overflow, NSEH jump, and ROP gadget chains that execute when the Custom fields settings dialog processes the malicious input in the Label field.

Exploits (1)

exploitdb WORKING POC

by Achilles · pythonlocalwindows

https://www.exploit-db.com/exploits/46016

View Code ZIP pw:eip

References (4)

[Exploit] https://www.exploit-db.com/exploits/46016

[Product] http://www.rttsoftware.com/

[Product] https://www.rttsoftware.com/files/PDFExplorerTrialSetup.zip

[Third Party Advisory] https://www.vulncheck.com/advisories/pdf-explorer-structured-exception-handler-local-code-execution

Scores

CVSS v3 8.4

EPSS 0.0002

EPSS Percentile 5.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-787

Status published

Products (2)

Rttsoftware/PDF Explorer 1.5.66.2

rttsoftware/pdf_explorer 1.5.66.2

Published Mar 26, 2026

Tracked Since Mar 26, 2026