anonhaven
Ad

CVE-2019-25650

HIGH CVSS 4.0: 8.6 EPSS 0.02%
Updated Mar 26, 2026
Bind
Parameter Value
CVSS 8.6 (HIGH)
Type CWE-787 (Out-of-bounds Write)
Vendor Bind
Public PoC Yes

River Past CamDo 3.7.6 contains a structured exception handler (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the Lame_enc.dll name field. Attackers can craft a payload with a 280-byte buffer, NSEH jump instruction, and SEH handler address pointing to a pop-pop-ret gadget to trigger code execution and establish a bind shell on port 3110.

Attack Parameters

Attack Vector
Local
Requires local access
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v4.0

Weakness Type (CWE)

CWE-787 Out-of-bounds Write

References 3

https://en.softonic.com/download/river-past-cam-do/windows/post-download?sl=1
disclosure@vulncheck.com
https://www.exploit-db.com/exploits/46335
disclosure@vulncheck.com
https://www.vulncheck.com/advisories/river-past-camdo-structured-exception-hand…
disclosure@vulncheck.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-32978

Bind

9.4

CVE-2026-33619

Bind

4.1

CVE-2026-3591

Bind

5.4

CVE-2026-3119

Bind

6.5

CVE-2026-3104

Bind

7.5