CVE-2018-25258

HIGH

RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass

Title source: cna

Description

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based buffer overflow, execute a ROP chain for VirtualAlloc allocation, and achieve arbitrary code execution.

Exploits (1)

exploitdb WORKING POC

by bzyo · pythonlocalwindows

https://www.exploit-db.com/exploits/46107

View Code ZIP pw:eip

References (4)

[Third Party Advisory] https://www.vulncheck.com/advisories/rgui-local-buffer-overflow-seh-dep-bypass

[Exploit] https://www.exploit-db.com/exploits/46107

[Product] https://www.r-project.org/

[Product] https://cran.r-project.org/bin/windows/base/old/3.5.0/R-3.5.0-win.exe

Scores

CVSS v3 8.4

EPSS 0.0001

EPSS Percentile 0.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Products (1)

R-Project/RGui 3.5.0

Published Apr 12, 2026

Tracked Since Apr 12, 2026