High severity8.4NVD Advisory· Published Apr 4, 2026· Updated Apr 16, 2026

CVE-2018-25255

Description

10-Strike LANState 8.8 contains a local buffer overflow vulnerability in structured exception handling that allows local attackers to execute arbitrary code by crafting malicious LSM map files. Attackers can create a specially formatted LSM file with a payload in the ObjCaption parameter that overflows the buffer, overwrites the SEH chain, and executes shellcode when the file is opened in the application.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.10-strike.com/lanstate/download.shtmlnvd
www.10-strike.com/products.shtmlnvd
www.exploit-db.com/exploits/45086nvd
www.vulncheck.com/advisories/10-strike-lanstate-local-buffer-overflow-sehnvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000