CVE-2018-25328

Name of the Vulnerable Software and Affected Versions VX Search version 10.6.18

Description A local buffer overflow occurs when an oversized string is supplied in the directory field. This allows attackers to overwrite the instruction pointer by using a malicious input file containing 271 bytes of junk data followed by a return address, enabling the execution of arbitrary code with application privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.