CVE-2018-25212
Published: 26 March 2026
Summary
CVE-2018-25212 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Boxoft Wav To Wma Converter. Its CVSS base score is 8.6 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 10.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2018-25212 is a local buffer overflow vulnerability (CWE-787) in Boxoft WAV-WMA Converter 1.0 on Windows systems. The issue occurs in the structured exception handling (SEH) mechanism, where processing a specially crafted WAV file with excessive data overwrites the SEH chain, enabling attackers to incorporate ROP gadgets for arbitrary code execution.
A local attacker can exploit this vulnerability with low attack complexity, no privileges, and no user interaction required, as indicated by its CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). By crafting a malicious WAV file and having it processed by the converter, the attacker achieves full control over the application, potentially leading to system compromise through code execution.
Advisories, including those from VulnCheck, describe the SEH buffer overflow in detail, while an exploit is publicly available on Exploit-DB (ID 44989). The vendor product page at boxoft.com/wav-to-wma provides no specific patch or mitigation guidance in the referenced materials.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2018-21682
Vulnerability details
Boxoft wav-wma Converter 1.0 contains a local buffer overflow vulnerability in structured exception handling that allows attackers to execute arbitrary code by crafting malicious WAV files. Attackers can create a specially crafted WAV file with excessive data and ROP gadgets…
more
to overwrite the SEH chain and achieve code execution on Windows systems.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Local SEH buffer overflow with ROP enables arbitrary code execution from a crafted file, directly mapping to exploitation for privilege escalation (T1068) and client-side code execution (T1203).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires timely remediation of the buffer overflow flaw in Boxoft WAV-WMA Converter through patching, updates, or removal to eliminate the vulnerability.
Implements memory protections such as DEP and ASLR that directly mitigate SEH chain overwrites and ROP exploitation in this buffer overflow.
Enforces input validation for WAV files to block excessive or malformed data that triggers the buffer overflow during processing.