Buffer Overflow Vulnerability in StyleWriter by Editor Software
CVE-2018-25288

6.9MEDIUM

Key Information:

Vendor

Editorsoftware

Status
Stylewriter
Vendor
CVE Published:
26 April 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2018-25288?

StyleWriter 1.0 has a vulnerability that allows local attackers to exploit a buffer overflow by supplying an excessively long string. This vulnerability can trigger a denial of service condition, causing the application to crash. Attackers can achieve this by inserting a payload of up to 6000 bytes into the Pattern to Find or Advice Message fields within the Add Pattern dialog. Users of this software should ensure they are aware of this vulnerability and apply necessary precautions to safeguard their applications from potential exploitation.

Affected Version(s)

StyleWriter 1.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2018-25288 - Proof of Concept

References

https://www.exploit-db.com/exploits/45250
exploit
http://www.editorsoftware.com
product
http://www.editorsoftware.com/StyleWriter_Download.php
product

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Gionathan "John" Reale
.