Vulnerabilities ›

CVE-2018-25291

Medium

CWE-120 — Weakness Type

                    Published: Apr 26, 2026                      ·  Modified: Apr 29, 2026                      ·  Source: NVD                

CVSS v3

6.2

🔗 NVD Official

📄 Description (English)

Project64 2.3.2 contains a buffer overflow vulnerability in the Plugin Directory settings field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 6000-byte payload into the Plugin Directory field through the Options > Settings > Directories interface to trigger an application crash when settings are reopened.

🤖 AI Executive Summary

CVE-2018-25291 is a local buffer overflow vulnerability in Project64 2.3.2 affecting the Plugin Directory settings field. While the CVSS score is 6.2 (medium), the vulnerability requires local access and results primarily in denial of service through application crashes. This poses limited risk to most Saudi organizations unless Project64 is used in gaming development or emulation environments with sensitive data access.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 22, 2026 11:23

🇸🇦 Saudi Arabia Impact Assessment

Impact is limited to Saudi organizations using Project64 (a Nintendo 64 emulator) in development or research environments. Primary risk sectors: Gaming/Entertainment companies, Educational institutions with game development programs, and Research facilities. No direct impact on critical Saudi infrastructure (banking, government, healthcare, energy, telecom). Risk is confined to local denial of service affecting development workflows rather than data breach or system compromise.

🏢 Affected Saudi Sectors

Gaming and Entertainment Education (Game Development Programs) Research and Development Software Development

🎯 MITRE ATT&CK Techniques

T1499 - Endpoint Denial of Service T1203 - Exploitation for Client Execution

⚖️ Saudi Risk Score (AI)

3.2

/ 10.0

🔧 Remediation Steps (English)

1. IMMEDIATE ACTIONS:

   - Identify all systems running Project64 2.3.2 or earlier versions

   - Restrict local access to Project64 installations to trusted users only

   - Implement principle of least privilege for user accounts running the application



2. PATCHING GUIDANCE:

   - No official patch is available for this vulnerability

   - Upgrade to the latest available version of Project64 if available (check official repository)

   - If upgrade is not possible, consider alternative emulators or discontinue use in sensitive environments



3. COMPENSATING CONTROLS:

   - Disable or restrict access to Settings > Directories interface for non-administrative users

   - Monitor for unexpected application crashes and log all settings modifications

   - Use application whitelisting to prevent unauthorized modifications

   - Implement file integrity monitoring on Project64 configuration files



4. DETECTION RULES:

   - Monitor for Project64 process crashes with event ID 1000 (Application Error)

   - Alert on attempts to modify Plugin Directory settings with strings exceeding 1000 characters

   - Track configuration file modifications in Project64 installation directory

🔧 خطوات المعالجة (العربية)

1. الإجراءات الفورية:

   - تحديد جميع الأنظمة التي تقوم بتشغيل Project64 2.3.2 أو الإصدارات الأقدم

   - تقييد الوصول المحلي إلى تثبيتات Project64 للمستخدمين الموثوقين فقط

   - تطبيق مبدأ أقل امتياز للحسابات التي تقوم بتشغيل التطبيق



2. إرشادات التصحيح:

   - لا يوجد تصحيح رسمي متاح لهذه الثغرة

   - الترقية إلى أحدث إصدار متاح من Project64 إن أمكن (تحقق من المستودع الرسمي)

   - إذا لم يكن الترقية ممكنة، فكر في محاكيات بديلة أو توقف الاستخدام في البيئات الحساسة



3. الضوابط البديلة:

   - تعطيل أو تقييد الوصول إلى واجهة الإعدادات > الدلائل للمستخدمين غير الإداريين

   - مراقبة أعطال التطبيق غير المتوقعة وتسجيل جميع تعديلات الإعدادات

   - استخدام القائمة البيضاء للتطبيقات لمنع التعديلات غير المصرح بها

   - تطبيق مراقبة سلامة الملفات على ملفات تكوين Project64



4. قواعد الكشف:

   - مراقبة أعطال عملية Project64 مع معرف الحدث 1000 (خطأ التطبيق)

   - تنبيه محاولات تعديل إعدادات دليل المكونات الإضافية بسلاسل تتجاوز 1000 حرف

   - تتبع تعديلات ملفات التكوين في دليل تثبيت Project64

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.5.1.1 - Information security policies and procedures A.8.1.1 - User access management A.12.2.1 - Change management procedures

🔵 SAMA CSF

ID.AM-2 - Software inventory and management PR.AC-1 - Access control policy enforcement DE.CM-1 - System monitoring and anomaly detection

🟡 ISO 27001:2022

A.5.1 - Management direction for information security A.8.1 - User access management A.12.2 - Change management A.14.2 - Development and change management

🔗 References & Sources 3

🔗

https://www.exploit-db.com/exploits/45229

disclosure@vulncheck.com

🔗

https://www.pj64-emu.com

disclosure@vulncheck.com

🔗

https://www.vulncheck.com/advisories/project64-denial-of-service-via-plugin-directory

disclosure@vulncheck.com

📊 CVSS Score

6.2

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity Medium

CVSS Score6.2

CWECWE-120

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-04-26

Source Feed nvd

🇸🇦 Saudi Risk Score

3.2

/ 10.0 — Saudi Risk

Priority: LOW

🏷️ Tags

CWE-120

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2018-25291

Introduce Yourself

Sign In Required