CVE-2020-37190

Top Password Firefox Password Recovery 2.8 - Denial of Service

CVSS 4.6 MEDIUMEPSS 0.3%CWE-120

Top Password Firefox Password Recovery 2.8 contains a denial of service vulnerability that allows attackers to crash the application by overflowing input fields. Attackers can trigger the vulnerability by inserting 5000 characters into the User Name or Registration Code input fields.

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Produtos afetados

Top Password Software · Top Password Firefox Password Recovery

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.exploit-db.com/exploits/47912 https://www.top-password.com/https://www.vulncheck.com/advisories/top-password-firefox-password-recovery-denial-of-service