CVE-2019-25660

Sažetak

LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service condition.

Reference

http://www.hainsoft.com/
https://www.exploit-db.com/exploits/46295
https://www.vulncheck.com/advisories/lanhelper-denial-of-service-via-buffer-overflow

CVSS

Base:	6.2
Impact:	3.6
Exploitability:	2.5

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Zadnje važnije ažuriranje

05-04-2026 - 21:16

Objavljeno

05-04-2026 - 21:16