top of page
perceptive_background_267k.jpg

LanSpy 2.0.1.159 contains a local buffer overflow vulnerability in the scan section that allows local attackers to execute arbitrary code by exploiting structur…

Published:

21 april 2026 om 22:00:00

Alert date:

22 april 2026 om 17:03:04

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure

LanSpy version 2.0.1.159 contains a critical local buffer overflow vulnerability in its scan section. The vulnerability allows local attackers to execute arbitrary code through exploitation of structured exception handling (SEH) mechanisms. Attackers can craft malicious payloads using advanced techniques including egghunter methods to locate and execute shellcode. The exploit involves SEH chain manipulation and controlled jumps to achieve code execution. This vulnerability poses a high risk as it enables complete system compromise through local privilege escalation.

Technical details

Mitigation steps:

Affected products:

LanSpy

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2018-25265
https://lizardsystems.com
https://www.exploit-db.com/exploits/46018
https://www.vulncheck.com/advisories/lanspy-local-buffer-overflow

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page