PT-2026-4509 · Agatasoft · Pingmaster Pro

Ismael Nava

Publicado

2026-01-23

Atualizado

2026-01-24

CVE-2021-47893

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions AgataSoft PingMaster Pro version 2.1

Description The software contains a denial of service issue within the Trace Route feature. An attacker can cause the application to crash by exploiting a buffer overflow in the host name input field. Specifically, providing a 10,000-character buffer to the hostname input can trigger the crash and potentially lead to system instability.

Recommendations Apply a fix that properly validates the length of the input provided to the hostname field in the Trace Route feature. As a temporary workaround, limit the number of characters allowed in the hostname input field.

Exploit

Correção

DoS

Allocation of Resources Without Limits

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-770

Identificadores relacionados

CVE-2021-47893

Produtos afetados

Pingmaster Pro

PT-2026-4509 · Agatasoft · Pingmaster Pro

CVE-2021-47893

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6