CVE-2019-25705

HIGH

Echo Mirage 3.1 Stack Buffer Overflow via Rules Action Field

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25705. PoCs published by InitD Community.

AI-analyzed exploit summary This Python script generates a buffer overflow payload targeting Echo Mirage 3.1 by creating a maliciously crafted text file. The payload consists of a large buffer (24241 'A's), an RBP overwrite (8 'B's), and padding (50 'C's), designed to trigger a stack overflow when pasted into the 'action' field of the application.

Description

Echo Mirage 3.1 contains a stack buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized string in the Rules action field. Attackers can create a malicious text file with a crafted payload exceeding buffer boundaries and paste it into the action field through the Rules dialog to trigger the overflow and overwrite the return address.

Exploits (1)

exploitdb WORKING POC

by InitD Community · pythondoswindows

https://www.exploit-db.com/exploits/46216

View Code ZIP pw:eip

This Python script generates a buffer overflow payload targeting Echo Mirage 3.1 by creating a maliciously crafted text file. The payload consists of a large buffer (24241 'A's), an RBP overwrite (8 'B's), and padding (50 'C's), designed to trigger a stack overflow when pasted into the 'action' field of the application.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Echo Mirage 3.1 (x64)

No auth needed

Prerequisites: Echo Mirage 3.1 installed on Windows 7 · User interaction to paste payload into the 'action' field

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Apr 12, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit exploit

ExploitDB-46216

https://www.exploit-db.com/exploits/46216

Product product

Official Product Homepage

http://initd.sh/

Product product

Product Reference

https://sourceforge.net/projects/echomirage.oldbutgold.p/

Third Party Advisory third-party-advisory

VulnCheck Advisory: Echo Mirage 3.1 Stack Buffer Overflow via Rules Action Field

https://www.vulncheck.com/advisories/echo-mirage-stack-buffer-overflow-via-rules-action-field

Scores

CVSS v3 8.4

EPSS 0.0021

EPSS Percentile 11.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-787

Status published

Products (2)

interference-security/echo_mirage 3.1

Sourceforge/Echo Mirage 3.1

Published Apr 12, 2026

Tracked Since Apr 12, 2026