CVE-2018-25215— Excel Password Recovery Professional 8.2.0.0 Local Buffer Overflow DoS

Excel Password Recovery Professional 8.2.0.0 Local Buffer Overflow DoS

Excel Password Recovery Professional 8.2.0.0 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by supplying an excessively long string to the 'E-Mail and Registrations Code' field. Attackers can paste a crafted payload containing 5000 bytes of data into the registration field to trigger a crash when the Register button is clicked.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

跨界内存写

PassFab Excel Password Recovery 缓冲区错误漏洞

PassFab Excel Password Recovery是PassFab公司的一个Excel文件密码恢复工具。 Excel Password Recovery Professional 8.2.0.0版本存在缓冲区错误漏洞，该漏洞源于E-Mail and Registrations Code字段存在缓冲区溢出，可能导致拒绝服务。

N/A

N/A