CVE-2019-25545

Description

Terminal Services Manager 3.2.1 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying an excessively long string in the computer name field. Attackers can input a 5000-byte buffer of data into the 'Computer name or IP address' field during computer addition, causing a denial of service when the server entry is accessed.

References

• https://lizardsystems.com
• https://www.exploit-db.com/exploits/46911
• https://www.vulncheck.com/advisories/terminal-services-manager-local-buffer-overflow-denial-of-service