{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/dvd-photo-slideshow-professional-8.07/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":8.4,"id":"CVE-2018-25373"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["DVD Photo Slideshow Professional 8.07"],"_cs_severities":["high"],"_cs_tags":["buffer-overflow","code-execution","windows"],"_cs_type":"advisory","_cs_vendors":["SocuSoft"],"content_html":"\u003cp\u003eSocuSoft DVD Photo Slideshow Professional 8.07 is susceptible to a stack-based buffer overflow vulnerability, identified as CVE-2018-25373. This flaw resides within the registration name field and allows a local attacker to execute arbitrary code. The vulnerability can be exploited by leveraging structured exception handling (SEH) overwrite techniques. A malicious actor can craft a specially designed text file containing junk bytes, an overwritten SEH chain, and shellcode. This crafted payload can then be pasted into the Registration Name field via Help \u0026gt; Register to trigger code execution, thereby compromising the affected system. This vulnerability poses a significant risk, as it enables unauthorized code execution on a local machine.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAttacker crafts a malicious text file containing a buffer overflow payload.\u003c/li\u003e\n\u003cli\u003eThe payload includes junk bytes to reach the SEH overwrite point.\u003c/li\u003e\n\u003cli\u003eThe payload contains an overwritten SEH chain pointing to attacker-controlled code.\u003c/li\u003e\n\u003cli\u003eThe payload contains shellcode designed to execute arbitrary commands.\u003c/li\u003e\n\u003cli\u003eThe attacker opens the SocuSoft DVD Photo Slideshow Professional application.\u003c/li\u003e\n\u003cli\u003eThe attacker navigates to Help \u0026gt; Register within the application.\u003c/li\u003e\n\u003cli\u003eThe attacker pastes the crafted text file contents into the Registration Name field.\u003c/li\u003e\n\u003cli\u003eThe application attempts to process the oversized input, triggering the buffer overflow and SEH overwrite, leading to the execution of the attacker\u0026rsquo;s shellcode. The attacker achieves arbitrary code execution on the system.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this vulnerability (CVE-2018-25373) allows a local attacker to execute arbitrary code within the context of the SocuSoft DVD Photo Slideshow Professional application. This could lead to complete system compromise, data theft, or installation of malware. Since the vulnerability is local, an attacker needs prior access to the system. The impact is high due to the potential for complete system compromise.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eApply any available patches or updates from SocuSoft to address CVE-2018-25373 if they exist.\u003c/li\u003e\n\u003cli\u003eMonitor process creation events for unexpected processes launched by the \u003ccode\u003eDVDPhotoSlideshow.exe\u003c/code\u003e application using the provided Sigma rule.\u003c/li\u003e\n\u003cli\u003eImplement restrictions on pasting from the clipboard into applications, where possible, to mitigate the attack vector described.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-05-26T14:15:30Z","date_published":"2026-05-26T14:15:30Z","id":"https://feed.craftedsignal.io/briefs/2026-05-dvd-photo-slideshow-overflow/","summary":"SocuSoft DVD Photo Slideshow Professional 8.07 is vulnerable to a stack-based buffer overflow (CVE-2018-25373) in the registration name field, allowing local attackers to execute arbitrary code by exploiting structured exception handling.","title":"SocuSoft DVD Photo Slideshow Professional Stack-Based Buffer Overflow (CVE-2018-25373)","url":"https://feed.craftedsignal.io/briefs/2026-05-dvd-photo-slideshow-overflow/"}],"language":"en","title":"CraftedSignal Threat Feed — DVD Photo Slideshow Professional 8.07","version":"https://jsonfeed.org/version/1.1"}