Vulnerabilities ›

CVE-2018-25293

Medium

CWE-120 — Weakness Type

                    Published: Apr 26, 2026                      ·  Modified: Apr 29, 2026                      ·  Source: NVD                

CVSS v3

6.2

🔗 NVD Official

📄 Description (English)

Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional proxy password field. Attackers can trigger a denial of service by entering a 6000-byte payload into the proxy password parameter, causing the application to crash when processing the connection settings.

🤖 AI Executive Summary

CVE-2018-25293 is a local buffer overflow vulnerability in Prime95 29.4b7 affecting the PrimeNet proxy password field, allowing attackers to crash the application via denial of service. While the CVSS score is moderate (6.2), the vulnerability requires local access and has no known public exploit. The lack of patch availability and the application's niche use case in distributed computing limit widespread organizational impact in Saudi Arabia.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 22, 2026 14:07

🇸🇦 Saudi Arabia Impact Assessment

Impact is minimal for Saudi organizations. Prime95 is primarily used by individual researchers and academic institutions for distributed computing projects (GIMPS - Great Internet Mersenne Prime Search). Affected sectors would be limited to: Research institutions and universities conducting computational research, and potentially some technology companies with distributed computing initiatives. Government agencies, banking sector, healthcare, energy, and telecommunications are not typically affected by this application.

🏢 Affected Saudi Sectors

Research and Academic Institutions Technology and Software Development Distributed Computing Projects

🎯 MITRE ATT&CK Techniques

T1499 - Endpoint Denial of Service T1203 - Exploitation for Client Execution T1657 - Financial Theft

⚖️ Saudi Risk Score (AI)

2.5

/ 10.0

🔧 Remediation Steps (English)

1. Immediate Actions:

   - Identify systems running Prime95 29.4b7 through asset inventory and endpoint detection tools

   - Restrict local access to affected systems to trusted users only

   - Disable PrimeNet connectivity features if not required for operations



2. Patching Guidance:

   - Upgrade to Prime95 version 29.4b8 or later when available

   - Monitor official Prime95 website (mersenne.org) for security updates

   - If upgrade not possible, consider discontinuing use of affected version



3. Compensating Controls:

   - Implement application whitelisting to prevent unauthorized execution

   - Use endpoint protection with behavioral analysis to detect application crashes

   - Monitor system logs for Prime95 process termination events

   - Restrict network access to PrimeNet servers if application is not actively used



4. Detection Rules:

   - Monitor for Prime95.exe crashes with error codes related to buffer overflow

   - Alert on unusual process termination patterns for Prime95

   - Log and review any configuration changes to proxy settings in Prime95

🔧 خطوات المعالجة (العربية)

1. الإجراءات الفورية:

   - تحديد الأنظمة التي تقوم بتشغيل Prime95 29.4b7 من خلال جرد الأصول وأدوات كشف نقاط النهاية

   - تقييد الوصول المحلي للأنظمة المتأثرة للمستخدمين الموثوقين فقط

   - تعطيل ميزات اتصال PrimeNet إذا لم تكن مطلوبة للعمليات



2. إرشادات التصحيح:

   - الترقية إلى إصدار Prime95 29.4b8 أو أحدث عند توفره

   - مراقبة موقع Prime95 الرسمي (mersenne.org) للتحديثات الأمنية

   - إذا لم يكن الترقية ممكنة، فكر في التوقف عن استخدام الإصدار المتأثر



3. الضوابط البديلة:

   - تنفيذ قائمة بيضاء للتطبيقات لمنع التنفيذ غير المصرح به

   - استخدام الحماية من نقاط النهاية مع التحليل السلوكي لكشف أعطال التطبيق

   - مراقبة سجلات النظام لأحداث إنهاء عملية Prime95

   - تقييد الوصول إلى شبكة خوادم PrimeNet إذا لم يكن التطبيق قيد الاستخدام النشط



4. قواعد الكشف:

   - مراقبة أعطال Prime95.exe برموز خطأ متعلقة بتجاوز المخزن المؤقت

   - تنبيه على أنماط إنهاء العملية غير العادية لـ Prime95

   - تسجيل ومراجعة أي تغييرات في إعدادات الوكيل في Prime95

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.12.6.1 - Management of technical vulnerabilities ECC 2024 A.14.2.1 - Secure development policy ECC 2024 A.12.2.1 - Monitoring and logging

🔵 SAMA CSF

ID.RA-1 - Asset management and vulnerability identification PR.IP-12 - Software development and security practices DE.CM-1 - Detection and analysis of anomalies

🟡 ISO 27001:2022

A.12.6.1 - Management of technical vulnerabilities A.14.2.1 - Secure development policy and procedures A.12.4.1 - Event logging

🔗 References & Sources 4

🔗

http://www.mersenne.org

disclosure@vulncheck.com

🔗

http://www.mersenne.org/ftp_root/gimps/p95v294b7.win32.zip

disclosure@vulncheck.com

🔗

https://www.exploit-db.com/exploits/45226

disclosure@vulncheck.com

🔗

https://www.vulncheck.com/advisories/prime95-29-4b7-denial-of-service-via-proxy-passwor...

disclosure@vulncheck.com

📊 CVSS Score

6.2

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity Medium

CVSS Score6.2

CWECWE-120

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-04-26

Source Feed nvd

🇸🇦 Saudi Risk Score

2.5

/ 10.0 — Saudi Risk

Priority: LOW

🏷️ Tags

CWE-120

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2018-25293

Introduce Yourself

Sign In Required