Home / Vulnerability Intelligence / CVE-2018-25214

CVE-2018-25214 - Vulnerability Analysis

MediumCVSS: 6.2

Last Updated: March 27, 2026

MegaPing - Buffer Overflow

Published: March 26, 2026Updated: March 27, 2026PoC Available

Overview

MegaPing contains a local buffer overflow caused by an oversized payload in the Destination Address List field of the Finger function, letting local attackers cause denial of service by crashing the application, exploit requires local access.

Severity & Score

Severity: Medium

CVSS Score: 6.2

Impact

Local attackers can crash the application causing denial of service.

Mitigation

Update to the latest version of MegaPing.

References

http://www.magnetosoft.com/
http://www.magnetosoft.com/downloads/win32/megaping_setup.exe
https://www.exploit-db.com/exploits/46004
https://www.vulncheck.com/advisories/megaping-local-buffer-overflow-denial-of-service

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2018-25214
Severity: Medium
CVSS Score: 6.2
Type: buffer_overflow
Status: confirmed

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H