CVE-2018-25258 PUBLISHED

RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass

Assigner: VulnCheck
Reserved: 12.04.2026 Published: 12.04.2026 Updated: 12.04.2026

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based buffer overflow, execute a ROP chain for VirtualAlloc allocation, and achieve arbitrary code execution.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.6

Product Status

Vendor R-Project
Product RGui
Versions
  • Version 3.5.0 is affected

Credits

  • bzyo finder

References

Problem Types

  • Unrestricted Upload of File with Dangerous Type CWE