CVE-2020-37188

Medium CVSS: 4.6

SpotOutlook 1.2.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can overwrite the buffer by pasting 1000 'A' characters into the 'Name' field, causing the application to become unresponsive.

Vendor

Product

CWE

CWE-120

Yayın Tarihi

2026-02-11 21:16:12

Güncelleme

2026-02-12 15:10:37

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-120 MEDIUM 2026

Referanslar

http://www.nsauditor.com/ https://www.exploit-db.com/exploits/47906 https://www.vulncheck.com/advisories/spotoutlook-name-denial-of-service