High severity8.4NVD Advisory· Published Apr 29, 2026· Updated Apr 29, 2026

CVE-2018-25303

Description

Allok Video to DVD Burner 2.6.1217 contains a stack-based buffer overflow vulnerability in the License Name field that allows local attackers to execute arbitrary code by triggering a structured exception handler (SEH) overwrite. Attackers can craft a malicious input string with 780 bytes of junk data followed by SEH chain pointers and shellcode, then paste it into the License Name field during registration to achieve code execution.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.alloksoft.comnvd
www.exploit-db.com/exploits/44518nvd
www.vulncheck.com/advisories/allok-video-to-dvd-burner-buffer-overflow-sehnvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000