Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 03 Jun 2026 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:4mhz:base64_decoder:1.1.2:*:*:*:*:*:*:* |
Wed, 25 Mar 2026 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
4mhz
4mhz base64 Decoder |
|
| Vendors & Products |
4mhz
4mhz base64 Decoder |
Tue, 24 Mar 2026 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 24 Mar 2026 11:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Base64 Decoder 1.1.2 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by triggering a structured exception handler (SEH) overwrite. Attackers can craft a malicious input file that overflows a buffer, overwrites the SEH chain with a POP-POP-RET gadget address, and uses an egghunter payload to locate and execute shellcode for code execution. | |
| Title | Base64 Decoder 1.1.2 Local Buffer Overflow SEH Egghunter | |
| Weaknesses | CWE-787 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: VulnCheck
Published:
Updated: 2026-03-24T13:48:49.934Z
Reserved: 2026-03-24T11:02:46.887Z
Link: CVE-2019-25634
Updated: 2026-03-24T13:48:32.892Z
Status : Analyzed
Published: 2026-03-24T12:16:04.000
Modified: 2026-06-17T02:32:51.460
Link: CVE-2019-25634
No data.
OpenCVE Enrichment
Updated: 2026-03-25T20:39:37Z