CVE-2019-25547

Name of the Vulnerable Software and Affected Versions NetAware version 1.20

Description NetAware version 1.20 includes a buffer overflow issue within the User Blocking feature. Local attackers can cause the application to crash by providing input exceeding the expected size. Specifically, pasting a malicious buffer of 512 bytes into the 'Add a website or keyword to be filtered' field and then attempting to remove the created block triggers the crash. The vulnerable feature allows attackers to disrupt the application's functionality.

Recommendations Apply a fix or update to address the buffer overflow in the User Blocking feature. As a temporary workaround, avoid adding excessively long input to the 'Add a website or keyword to be filtered' field.