CVE-2019-25463

Medium CVSS: 6.9

SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 256-character payload into the Key field during registration to trigger a buffer overflow and crash the application.

Vendor

Product

CWE

CWE-787

Yayın Tarihi

2026-03-11 19:15:59

Güncelleme

2026-03-12 21:08:22

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-787 MEDIUM 2026

Referanslar

https://www.exploit-db.com/exploits/47404 https://www.vulncheck.com/advisories/spotie-internet-explorer-password-recovery-key-field-dos