CVE-2018-25225 in SIPPinformation

Résumé (Anglaise)

SIPP 3.3 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious input in the configuration file. Attackers can craft a configuration file with oversized values that overflow a stack buffer, overwriting the return address and executing arbitrary code through return-oriented programming gadgets.

Responsable

VulnCheck

Réserver

28/03/2026

Divulgation

28/03/2026

Entrées

PubliéBaseTempVulnérabilitéCWEProdExpConEPSSCTICVE
28/03/20266.86.6SIPP Configuration authentification faible306InconnuPreuve de conceptNon défini0.000163.27CVE-2018-25225

Montrer plus

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!