High severity8.4NVD Advisory· Published Mar 26, 2026· Updated May 1, 2026
CVE-2019-25650
CVE-2019-25650
Description
River Past CamDo 3.7.6 contains a structured exception handler (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the Lame_enc.dll name field. Attackers can craft a payload with a 280-byte buffer, NSEH jump instruction, and SEH handler address pointing to a pop-pop-ret gadget to trigger code execution and establish a bind shell on port 3110.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 3.7.6
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.