CVE-2026-39836

The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL 0...

CVE-2018-25240

Microsoft Watchr 1.1.0.0 is affected by a local denial-of-service vulnerability in its search feature: submitting an excessively long string (about 8,145 characters) can crash the application. The issue stems from input handling in the search function, enabling a local attacker to trigger a crash...

CVE-2019-25595 jetAudio 8.1.7.20702 Basic Denial of Service via URL Handler

jetAudio 8.1.7.20702 Basic contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string through the URL input handler. Attackers can trigger the crash by pasting a buffer of 5000 characters into the Open URL dialog, causin...

EUVD-2019-19888

RealTerm Serial Terminal 2.0.0.70 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Port field. Attackers can paste a buffer of 1000 characters into the Port input field and click the open button to trigg...

EUVD-2019-19866

SpotPaltalk 1.1.5 contains a denial of service vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can paste a buffer of 1000 characters into the Name/Key field during registration to trigger a...

CVE-2019-25559

SpotPaltalk 1.1.5 contains a local-denial-of-service vulnerability in the registration Name/Key field. The issue allows a local attacker to crash the application by submitting an excessively long input (a 1000-character buffer) and pressing OK. According to the CVSS data, the impact is on availab...

PT-2026-21314

Foscam Video Management System 1.1.6.6 contains a buffer overflow vulnerability in the UID field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 5000-character buffer into the UID parameter during device addition to trigger an...

CVE-2020-37208 SpotFTP FTP Password Recovery 3.0.0.0 - 'Key' Denial of Service

SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service...

CVE-2020-37132 UltraVNC Launcher 1.2.4.0 - 'Password' Denial of Service

UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in its password configuration properties that allows local attackers to crash the application. Attackers can paste an overly long 300-character string into the password field to trigger an application crash and prevent normal...

Linux Distros Unpatched Vulnerability : CVE-2020-37038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulating input in the FSymbols search field...

CVE-2021-47814 NBMonitor 1.6.8 - Denial of Service (PoC)

NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the registration code input field. Attackers can paste a 256-character buffer into the registration key field to trigger an application crash and potential system instability...

EUVD-2026-2772

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating username and error report fields. Attackers can trigger the crash by inserting 1000 characters into the username or email address fields, causing the application to...

EUVD-2022-1321

Malicious code in bioql PyPI...

Publify 输入验证错误漏洞

Publify is a simple but full-featured web publishing software. versions of Publify prior to 9.2.10 contain an input validation error vulnerability that stems from the fact that it allows the insertion of large characters "title name and post field" into the input field of an article field, allowi...

Input validation

Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has updated the input mechanism to perform additional validation and sanitization. Please Note: No downstream affect has been detected as the LDAP servers ignored improper...

CVE-2005-4890

There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to be read by the next process...

Bluefish 2.2.7 - Denial Of Service Vulnerability

Exploit for linux platform in category dos / poc ----------------------------------------------------- Exploit Title : bluefish - Denial Of Service Vulnerability Date : 02/10/2015 Exploit Author : ZwX Software Vendor : http://bluefish.openoffice.nl/index.html Software Link:...

DEBIAN-CVE-2015-1472

The ADDW macro in stdio-common/vfscanf.c in the GNU C Library aka glibc or libc6 before 2.21 does not properly consider data-type size during memory allocation, which allows context-dependent attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a lo...

RedHat Update for glibc RHSA-2013:0769-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

devc4992.py.txt

!/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "site: http://shinnai.altervista.org" print...