CVE-2018-25213

Name of the Vulnerable Software and Affected Versions Nsauditor version 3.0.28.0

Description A structured exception handling (SEH) buffer overflow allows local attackers to execute arbitrary code by providing malicious input to the DNS Lookup tool. Attackers can craft a payload that overwrites the SEH chain and inject shellcode through the DNS Query field to achieve code execution with application privileges. SEH is a mechanism for handling hardware and software exceptions in Windows applications.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.