PT-2026-41458

Name of the Vulnerable Software and Affected Versions Sticky Notes & Color Widgets version 1.4.2 Description A denial of service issue allows attackers to crash the application by creating notes with excessively long character strings. By pasting large payloads of repeated characters into note...

Access of Resource Using Incompatible Type ('Type Confusion')

Overview Affected versions of this package are vulnerable to Access of Resource Using Incompatible Type 'Type Confusion' while handling a specially crafted XML Schema Definition XSD validated document containing an internal entity reference. An attacker can cause the application to crash by...

CVE-2019-25712

BlueAuditor 1.7.2.0 contains a buffer overflow vulnerability in the registration key field that allows local attackers to crash the application by submitting an oversized key value. Attackers can trigger a denial of service by entering a 256-byte buffer of repeated characters in the Key...

PT-2026-30469

LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service...

CVE-2018-25244 Eco Search 1.0.2.0 Denial of Service

Eco Search 1.0.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string to the search functionality. Attackers can paste a buffer of 950 or more characters into the search bar and trigger a crash by initiating a...

Watchr 安全漏洞

Watchr is a video recording application developed by Watchr Inc. Version 1.1.0.0 of Watchr contains a security vulnerability. This vulnerability arises from the search function’s improper handling of excessively long strings, which may allow local attackers to cause the application to crash by...

CVE-2019-25463

SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 256-character payload into the Key field during...

CVE-2020-37189

TaskCanvas 1.4.0 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the registration field to trigger an application crash...

CVE-2020-37212 SpotMSN 2.4.6 - 'Name' Denial of Service

SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash...

CVE-2021-47831

CVE-2021-47831 affects Sandboxie 5.49.7. The issue is a denial of service vulnerability where the application can crash by overflowing the Sandbox container folder input field; an attacker can paste a large buffer of repeated characters into this field to trigger the crash. Metrics show CVSSv4.0 ...

CVE-2021-47815 Nsauditor 3.2.3 - Denial of Service (PoC)

Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can paste a large buffer of 256 repeated characters into the 'Key' field to trigger an application crash...

CVE-2021-47793

Telegram Desktop 2.9.2 is affected by a Denial of Service vulnerability. An attacker can crash the app by pasting an oversized message payload (a 9,000,000‑byte buffer) into the messaging interface. The vulnerability is cited as CVE-2021-47793. Connected sources indicate PoC availability (e.g., E...

CVE-2021-47784 Cyberfox Web Browser 52.9.1 - Denial of Service (PoC)

Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the search bar with excessive data. Attackers can generate a 9,000,000 byte payload and paste it into the search bar to trigger an application crash...

CVE-2020-6374

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Jupiter Tessallation.jt file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper...

netty: Denial of Service attack on windows app using Netty

A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes...

CVE-2022-32242

When a user opens manipulated Radiance Picture .hdr, hdr.x3d files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application...

Foxit Reader and Foxit PhantomPDF Integer Overflow Vulnerability

Foxit Reader is a PDF document reader.Foxit PhantomPDF is a commercial version. Foxit Reader and Foxit PhantomPDF have an integer overflow vulnerability that can be exploited by remote attackers to construct malicious files that can be parsed by the user, crashing the application or executing...

Samsung SmartViewer 'DVRSetupSave' Method Remote Code Execution Vulnerability

Samsung SmartViewer is a suite of video viewing software designed for video surveillance systems. An unspecified security vulnerability exists in Samsung SmartViewer that could be exploited by remote attackers to conduct a denial-of-service attack and crash the application...