CVE-2019-25334

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Product Key Explorer version 4.2.0.0

Description The software contains a flaw that allows local attackers to cause a denial of service by crashing the application. This occurs due to a buffer overflow in the registration name input field. An attacker can create a specially crafted text file containing repeated characters. Pasting this file into the registration name field triggers the overflow, leading to an application crash. The vulnerable input field is the registration name field.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121

Related Identifiers

CVE-2019-25334

Affected Products

Product Key Explorer

CVE-2019-25334

Weakness Enumeration

Related Identifiers

Affected Products

References · 5