CVE-2025-34127

Achat v0.150 SEH Buffer Overflow via UDP

CVSS 9.3 CRITICALEPSS 1.1%CWE-121 CWE-94

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler (SEH) due to insufficient bounds checking on user-supplied input leading to remote code execution.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected products

Achat Software · Achat Chat Server

public PoCs found — 2

cve_referenceraw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/achat_bof.rbunverified cve_referencewww.exploit-db.com/exploits/36056unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/achat_bof.rb https://www.exploit-db.com/exploits/36056 https://www.vulncheck.com/advisories/achat-seh-buffer-overflow