CVE-2018-25251 HIGH

CVE-2018-25251: Snes9K 0.0.9z Buffer Overflow SEH via Netplay Socket

Vendor Sourceforge
Product Snes9K 0.0.9z
Weakness CWE-787
Published April 4, 2026
Last update April 6, 2026

CVSS base score

8.6/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Snes9K 0.0.9z contains a buffer overflow vulnerability in the Netplay Socket Port Number field that allows local attackers to trigger a structured exception handler (SEH) overwrite. Attackers can craft a malicious payload and paste it into the Socket Port Number field via the Netplay Options menu to achieve code execution through SEH chain exploitation.

Key dates

02Disclosure timeline

April 4, 2026 CVE published
April 6, 2026 Record updated