CVE-2018-25432

HIGH

Arm Whois 3.11 - Local Buffer Overflow via Structured Exception Handler Overwrite

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25432. PoCs published by zephyr.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Arm Whois 3.11, leveraging an egghunter and SEH overwrite to achieve arbitrary code execution (calc.exe). The payload is crafted for Windows Vista SP1 x86 and includes a NOP sled, shellcode, and SEH handler.

Description

Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting the structured exception handler. Attackers can craft a malicious input file with a 672-byte offset to overwrite the nSEH and SEH pointers, enabling code execution through exception handler hijacking.

Exploits (1)

exploitdb WORKING POC
by zephyr · textlocalwindows_x86
https://www.exploit-db.com/exploits/45907

This exploit demonstrates a buffer overflow vulnerability in Arm Whois 3.11, leveraging an egghunter and SEH overwrite to achieve arbitrary code execution (calc.exe). The payload is crafted for Windows Vista SP1 x86 and includes a NOP sled, shellcode, and SEH handler.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Arm Whois 3.11
No auth needed
Prerequisites: Windows Vista Ultimate SP1 x86 unpatched · Arm Whois 3.11 installed
devstral-2 · analyzed Jun 02, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/45907
Various Sources product
http://www.armcode.com

Scores

CVSS v3 8.4
EPSS 0.0016
EPSS Percentile 5.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (1)
Armcode/Arm Whois 3.11
Published Jun 01, 2026
Tracked Since Jun 02, 2026