CVE-2019-25660

CVSS v3.1

6.2

Medium

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service condition.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2019-25660

Affected Products

Lanhelper

CVE-2019-25660

Weakness Enumeration

Related Identifiers

Affected Products

References · 4