CVE-2018-25213

Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH chain overwrite and inject shellcode through the DNS Query field to achieve code execution with application privileges.

CVSS v3 8.4 HIGH

8.4^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://www.nsauditor.com	Product
http://www.nsauditor.com/downloads/nsauditor_setup.exe	Product
https://www.exploit-db.com/exploits/46005	Exploit VDB Entry
https://www.vulncheck.com/advisories/nsauditor-local-seh-buffer-overflow	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:nsasoft:nsauditor:3.0.28:*:*:*:*:*:*:*

History

27 Mar 2026, 18:24

Type	Values Removed	Values Added
First Time		Nsasoft Nsasoft nsauditor
CPE		cpe:2.3:a:nsasoft:nsauditor:3.0.28:::::::*
References	~~() http://www.nsauditor.com -~~	() http://www.nsauditor.com - Product
References	~~() http://www.nsauditor.com/downloads/nsauditor_setup.exe -~~	() http://www.nsauditor.com/downloads/nsauditor_setup.exe - Product
References	~~() https://www.exploit-db.com/exploits/46005 -~~	() https://www.exploit-db.com/exploits/46005 - Exploit, VDB Entry
References	~~() https://www.vulncheck.com/advisories/nsauditor-local-seh-buffer-overflow -~~	() https://www.vulncheck.com/advisories/nsauditor-local-seh-buffer-overflow - Third Party Advisory
Summary		(es) Nsauditor 3.0.28.0 contiene una vulnerabilidad de desbordamiento de búfer de manejo de excepciones estructurado que permite a atacantes locales ejecutar código arbitrario al proporcionar entrada maliciosa a la herramienta de búsqueda de DNS. Los atacantes pueden crear una carga útil con sobrescritura de la cadena SEH e inyectar shellcode a través del campo de consulta DNS para lograr la ejecución de código con privilegios de aplicación.

26 Mar 2026, 14:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-26 14:16

Updated : 2026-03-27 18:24

NVD link : CVE-2018-25213

Mitre link : CVE-2018-25213

CVE.ORG link : CVE-2018-25213

JSON object : View

Products Affected

nsasoft

nsauditor

CWE

CWE-787

Out-of-bounds Write

8.4 /10