CVE-2018-25221 in Echatserver EChat Server
요약 (영어)
EChat Server 3.1 contains a buffer overflow vulnerability in the chat.ghp endpoint that allows remote attackers to execute arbitrary code by supplying an oversized username parameter. Attackers can send a GET request to chat.ghp with a malicious username value containing shellcode and ROP gadgets to achieve code execution in the application context.
책임이 있는
VulnCheck
예약하다
2026. 03. 28.
공개
2026. 03. 28.
엔트리
| 게시됨 | 기본 | 임시 | 취약성 | CWE | 제품 | 악용 | 대책 | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 2026. 03. 28. | 8.5 | 8.2 | Echatserver EChat Server 메모리 손상 | 787 | Chat Software | 개념 증명 | 정의되지 않음 | 0.00207 | 1.36 | CVE-2018-25221 |