Echo Mirage 3.1 Stack Buffer Overflow via Rules Action Field

Description

Echo Mirage 3.1 contains a stack buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized string in the Rules action field. Attackers can create a malicious text file with a crafted payload exceeding buffer boundaries and paste it into the action field through the Rules dialog to trigger the overflow and overwrite the return address.

Affected Products

Vendor	Product	Versions
sourceforge	echo mirage	3.1

References

https://www.exploit-db.com/exploits/46216(exploit)
http://initd.sh/(product)
https://sourceforge.net/projects/echomirage.oldbutgold.p/(product)
https://www.vulncheck.com/advisories/echo-mirage-stack-buffer-overflow-via-rules-action-field(third-party-advisory)

Related News (1 articles)

Tier C

VulDB3h ago

CVE-2019-25705 | Echo Mirage 3.1 Rules action out-of-bounds write (Exploit 46216 / EDB-46216)

→ No new info (linked only)

CVSS 3.18.4 CRITICAL

VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

CWECWE-787

PublishedApr 12, 2026

Last enriched3h agov2

Trending Score51

Source articles2

Independent1

Info Completeness9/14

Missing: epss, kev, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

Version History

Last enriched 3h ago

v2Tier C3h ago

Updated severity to CRITICAL and marked exploit as available and actively exploited.

severityexploitAvailableactivelyExploited

via VulDB

v15h ago

Initial creation