Cyber Resilience

CVE-2018-25301

HighPublic PoC

Published: 29 April 2026

Published
29 April 2026
Modified
30 April 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0016 5.3th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2018-25301 is a high-severity Classic Buffer Overflow (CWE-120) vulnerability in Tomsguide (inferred from references). Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked at the 5.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2018-25301 is a structured exception handling (SEH) local buffer overflow vulnerability in Easy MPEG to DVD Burner version 1.7.11. The flaw occurs when the application processes a malicious username string, leading to overflow of the SEH chain and enabling arbitrary code execution. It is classified under CWE-120 (Buffer Copy without Checking Size of Input) with a CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating high impact on confidentiality, integrity, and availability from a local attack vector with low complexity and no privileges required.

Local attackers can exploit this vulnerability by supplying a crafted payload as the username, consisting of junk data to fill the buffer, followed by SEH chain pointers and shellcode. This overwrites the SEH handler, redirecting execution flow to the attacker's shellcode, which can run arbitrary commands such as launching calc.exe. The attack requires local access to the system running the vulnerable software but no user interaction beyond providing the malicious input.

Advisories and exploit details are available in referenced sources, including an Exploit-DB entry (https://www.exploit-db.com/exploits/44565) demonstrating a proof-of-concept payload, a VulnCheck advisory (https://www.vulncheck.com/advisories/easy-mpeg-to-dvd-burner-seh-local-buffer-overflow), and the software download page (https://downloads.tomsguide.com/MPEG-Easy-Burner,0301-10418.html). No patches or specific mitigations are detailed in the provided information.

EU & UK References

Vulnerability details

Easy MPEG to DVD Burner 1.7.11 contains a structured exception handling (SEH) local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious username string. Attackers can craft a payload containing junk data, SEH chain…

more

pointers, and shellcode that overwrites the SEH handler to redirect execution and run arbitrary commands like opening calc.exe.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
Why these techniques?

Local SEH buffer overflow enables arbitrary code execution in a client application via crafted input, directly matching Exploitation for Client Execution.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2020-37028Shared CWE-120
CVE-2020-37010Shared CWE-120
CVE-2025-27832Shared CWE-120
CVE-2024-57509Shared CWE-120
CVE-2018-25302Shared CWE-120
CVE-2025-66287Shared CWE-120
CVE-2025-27833Shared CWE-120
CVE-2022-47090Shared CWE-120
CVE-2019-25232Shared CWE-120
CVE-2020-37050Shared CWE-120

Affected Assets

Tomsguide
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires validation of username string inputs to check size and content, directly preventing the buffer overflow exploited in CVE-2018-25301.

prevent

Implements memory protections like DEP and ASLR that block SEH chain overwrites and arbitrary code execution from the buffer overflow.

prevent

Mandates monitoring, prioritization, and remediation of flaws like this SEH buffer overflow vulnerability to eliminate exploitation risk.

References