Buffer Overflow Vulnerability in TransMac by Transoft
CVE-2018-25264

6.9MEDIUM

Key Information:

Vendor: Acutesystems
Status: Transmac
Vendor: CVE Published:; 26 April 2026

🔔 Create Acutesystems Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2018-25264?

TransMac 12.2 is susceptible to a buffer overflow vulnerability in its license key input field. This flaw enables local attackers to exploit the application by entering an oversized string, which can lead to a denial of service condition. By generating a malicious payload of 4000 bytes and submitting it through the License Key field, attackers can effectively crash the application, compromising system reliability and functionality.

Affected Version(s)

TransMac 12.2

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2018-25264 - Proof of Concept

References

https://www.exploit-db.com/exploits/45493

exploit

https://www.vulncheck.com/advisories/transmac-denial-of-s...

third-party-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Apr 26, 2026
👾
Exploit known to exist
Apr 26, 2026
Vulnerability published
Apr 26, 2026
Vulnerability Reserved
Apr 22, 2026

Credit

Gionathan "John" Reale

CVE-2018-25264 Data

JSON