CVE-2018-25375 documents a stack-based buffer overflow vulnerability in SocuSoft iPod Photo Slideshow 8.05, specifically within the software's registration dialog. The vulnerability arises from insufficient input validation on the Registration Name and Registration Key fields, allowing local attackers to overwrite the Structured Exception Handler (SEH) and achieve arbitrary code execution. The CVSS 4.0 ve [truncated]
CVE-2018-25373 documents a stack-based buffer overflow in SocuSoft DVD Photo Slideshow Professional 8.07, specifically within the registration name field. The vulnerability allows local attackers to achieve arbitrary code execution by exploiting structured exception handling (SEH). The attack vector involves crafting a malicious text file containing junk bytes, an SEH chain overwrite, and shellcode, then [truncated]
