CVE-2019-25712
MEDIUMBlueAuditor 1.7.2.0 Buffer Overflow Denial of Service via Registration Key
Title source: cnaExploitation Summary
EIP tracks 1 public exploit for CVE-2019-25712. PoCs published by Luis Martínez.
AI-analyzed exploit summary This PoC demonstrates a local denial-of-service vulnerability in BlueAuditor 1.7.2.0 by overwriting a registration key field with a 256-byte buffer of 'A' characters, causing the application to crash when pasted into the 'Key' field during registration.
Description
BlueAuditor 1.7.2.0 contains a buffer overflow vulnerability in the registration key field that allows local attackers to crash the application by submitting an oversized key value. Attackers can trigger a denial of service by entering a 256-byte buffer of repeated characters in the Key registration field, causing the application to crash during registration processing.
Exploits (1)
This PoC demonstrates a local denial-of-service vulnerability in BlueAuditor 1.7.2.0 by overwriting a registration key field with a 256-byte buffer of 'A' characters, causing the application to crash when pasted into the 'Key' field during registration.
References (2)
Scores
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H