CVE-2018-25315

Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with structured exception handler (SEH) overwrite and shellcode to achieve code exec...

high 8.4 CVSS 3.1

Published: Apr 29, 2026

Modified: Apr 29, 2026

Description

Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with structured exception handler (SEH) overwrite and shellcode to achieve code execution when the application processes the license registration input.

References

http://www.alloksoft.com
http://www.alloksoft.com/joiner.htm
https://www.exploit-db.com/exploits/44364
https://www.vulncheck.com/advisories/alloksoft-video-joiner-buffer-overflow-via-license-name

Version	3.1
Score	8.4 / 10
Severity	high