PT-2026-24761 · Nsauditor · Spotie Internet Explorer Password Recovery

Emilio Revelo

Publicado

2026-03-11

Atualizado

2026-03-11

CVE-2019-25463

CVSS v3.1

6.2

Média

Vetor

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SpotIE Internet Explorer Password Recovery version 2.9.5

Description SpotIE Internet Explorer Password Recovery version 2.9.5 has a denial of service issue in the registration key input field. Local attackers can cause the application to crash by providing an overly long string. Specifically, pasting a 256-character payload into the Key field during registration triggers a buffer overflow, leading to an application crash.

Recommendations Update to a newer version of SpotIE Internet Explorer Password Recovery that addresses this issue.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2019-25463

Produtos afetados

Spotie Internet Explorer Password Recovery

PT-2026-24761 · Nsauditor · Spotie Internet Explorer Password Recovery

CVE-2019-25463

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3