CVE-2019-25660

Description

LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service condition.

References

• http://www.hainsoft.com/
• https://www.exploit-db.com/exploits/46295
• https://www.vulncheck.com/advisories/lanhelper-denial-of-service-via-buffer-overflow