Unrated severityNVD Advisory· Published Mar 26, 2026· Updated Mar 28, 2026
Boxoft wav-wma Converter 1.0 Local Buffer Overflow SEH
CVE-2018-25212
Description
Boxoft wav-wma Converter 1.0 contains a local buffer overflow vulnerability in structured exception handling that allows attackers to execute arbitrary code by crafting malicious WAV files. Attackers can create a specially crafted WAV file with excessive data and ROP gadgets to overwrite the SEH chain and achieve code execution on Windows systems.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.0+ 1 more
- (no CPE)range: <=1.0
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/44989mitreexploit
- www.vulncheck.com/advisories/boxoft-wav-wma-converter-local-buffer-overflow-sehmitrethird-party-advisory
- www.boxoft.com/wav-to-wma/mitreproduct
News mentions
0No linked articles in our index yet.