{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2018-25223", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-28T11:48:53.485Z", "datePublished": "2026-03-28T11:58:15.816Z", "dateUpdated": "2026-03-28T11:58:15.816Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-28T11:58:15.816Z"}, "title": "Crashmail 1.6 Stack-based Buffer Overflow Remote Code Execution", "descriptions": [{"lang": "en", "value": "Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Attackers can craft payloads with ROP chains to achieve code execution in the application context, with failed attempts potentially causing denial of service."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Out-of-bounds Write", "cweId": "CWE-787", "type": "CWE"}]}], "affected": [{"vendor": "crashmail", "product": "Crashmail", "versions": [{"version": "1.6", "status": "affected"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.3, "baseSeverity": "CRITICAL", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS"}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS"}], "references": [{"url": "https://www.exploit-db.com/exploits/44331", "name": "ExploitDB-44331", "tags": ["exploit"]}, {"url": "http://ftnapps.sourceforge.net/crashmail.html", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "http://exploitpack.com", "name": "Official Product Homepage", "tags": ["product"]}, {"name": "VulnCheck Advisory: Crashmail 1.6 Stack-based Buffer Overflow Remote Code Execution", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/crashmail-stack-based-buffer-overflow-remote-code-execution"}], "credits": [{"lang": "en", "value": "Juan Sacco <jsacco@exploitpack.com>, jsacco@exploitpack.com\"", "type": "finder"}], "x_generator": {"engine": "vulncheck"}, "datePublic": "2018-03-23T00:00:00.000Z"}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Attackers can craft payloads with ROP chains to achieve code execution in the application context, with failed attempts potentially causing denial of service."}], "id": "CVE-2018-25223", "lastModified": "2026-03-30T13:26:07.647", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 9.3, "baseSeverity": "CRITICAL", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-03-28T12:16:03.170", "references": [{"source": "disclosure@vulncheck.com", "url": "http://exploitpack.com"}, {"source": "disclosure@vulncheck.com", "url": "http://ftnapps.sourceforge.net/crashmail.html"}, {"source": "disclosure@vulncheck.com", "url": "https://www.exploit-db.com/exploits/44331"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/crashmail-stack-based-buffer-overflow-remote-code-execution"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "1.6"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Crashmail", "source": "cna", "vendor": "crashmail"}, "product": "crashmail", "vendor": "crashmail"}], "analysis": {"en": {"generated_at": "2026-03-28T13:21:51.786185+00:00", "value": {"mitigation_remediation": ["Apply the vendor's patch or upgrade Crashmail to a newer, non-vulnerable version.", "If a patch is not yet available, restrict network access to the Crashmail service by placing it behind a firewall or isolating it within a secure network segment.", "Continuously monitor Crashmail logs for abnormal activity that may indicate exploitation attempts.", "Check the vendor\u2019s website or trusted security advisories regularly for updates or additional mitigation guidance."], "summary": {"action": "Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the Crashmail application, version 1.6, as distributed by the vendor crashmail. No other products or versions are explicitly listed as affected.", "description_and_impact": "Crashmail 1.6 contains a stack-based buffer overflow that can be triggered by sending crafted input to the application. The overflow allows remote attackers to execute arbitrary code in the context of the Crashmail process, and failed attempts may also cause a denial of service. The impact is therefore loss of confidentiality, integrity, and availability for systems running this version.", "risk_and_exploitability": "The flaw has a CVSS score of 9.3, indicating a high severity risk. Exploit probability is not available from EPSS, and the vulnerability is not listed in the CISA KEV catalog. Attackers can exploit the flaw remotely by sending malicious input to the Crashmail service, making it easily reachable over the network. Given the high severity and the remote nature of the attack vector, the risk of exploitation is significant."}}}}, "created": "2026-03-29T20:32:15.471165+00:00", "updated": "2026-03-30T06:59:09.213155+00:00", "vendors": ["crashmail", "crashmail$PRODUCT$crashmail"]}