Home

Description

FlexHEX 2.71 contains a local buffer overflow vulnerability in the Stream Name field that allows local attackers to execute arbitrary code by triggering a structured exception handler (SEH) overflow. Attackers can craft a malicious text file with carefully aligned shellcode and SEH chain pointers, paste the contents into the Stream Name dialog, and execute arbitrary commands like calc.exe when the exception handler is triggered.

PUBLISHED Reserved 2026-03-24 | Published 2026-03-24 | Updated 2026-03-24 | Assigner VulnCheck




HIGH: 8.6CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
HIGH: 8.4CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

Unrestricted Upload of File with Dangerous Type

Product status

2.71
affected

Credits

Chris Au finder

References

www.exploit-db.com/exploits/46665 (ExploitDB-46665) exploit

www.flexhex.com (Official Product Homepage) product

www.flexhex.com/download/flexhex_setup.exe (Product Reference) product

www.vulncheck.com/...x-local-buffer-overflow-via-seh-unicode (VulnCheck Advisory: FlexHEX 2.71 Local Buffer Overflow via SEH Unicode) third-party-advisory

cve.org (CVE-2019-25627)

nvd.nist.gov (CVE-2019-25627)

Download JSON