CVE-2019-25741
Description
CVE-2019-25741: MobaXterm 12.1 has a SEH buffer overflow in session files, allowing unauthenticated remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CVE-2019-25741: MobaXterm 12.1 has a SEH buffer overflow in session files, allowing unauthenticated remote code execution.
Vulnerability
Mobatek MobaXterm version 12.1 contains a Structured Exception Handling (SEH) based buffer overflow vulnerability within the username field of session files. This vulnerability is present in versions up to and including 12.1 [1].
Exploitation
An attacker can craft a malicious MobaXterm session file containing overflow data. This malicious file, when imported and executed by a victim, triggers the vulnerability. No specific network position, authentication, or user interaction is required beyond the victim importing the crafted session file [1].
Impact
Successful exploitation allows remote attackers to execute arbitrary code. This can lead to a reverse shell execution with the privileges of the user running MobaXterm, potentially compromising the user's system [1].
Mitigation
Mobatek MobaXterm versions up to and including 12.1 are affected. A fixed version has not yet been disclosed in the available references. Users are advised to exercise caution when importing session files from untrusted sources [1].
AI Insight generated on Jun 4, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
3News mentions
0No linked articles in our index yet.