High severity8.4NVD Advisory· Published Mar 28, 2026· Updated Apr 2, 2026
CVE-2018-25224
CVE-2018-25224
Description
PMS 0.42 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious values in the configuration file. Attackers can craft configuration files with oversized input that overflows the stack buffer and execute shell commands via return-oriented programming gadgets.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/44426nvdExploitVDB Entry
- www.vulncheck.com/advisories/pms-stack-based-buffer-overflow-via-configuration-filenvdThird Party Advisory
- pms.sourceforge.netnvdProduct
News mentions
0No linked articles in our index yet.