CNNVD-202602-2166 Information
CNNVD ID
CNNVD-202602-2166
Related CVE
- CNNVD Published: 2026-02-12
Description (Chinese)
Nsasoft SpotAuditor是美国Nsasoft公司的一种高级密码恢复软件。用于恢复超过 40 种流行的 Windows 程序和工具丢失或忘记的密码。 Nsasoft SpotAuditor 5.3.2版本存在安全漏洞,该漏洞源于Base64解密功能存在拒绝服务漏洞,可能导致攻击者通过提供过大的缓冲区使应用程序崩溃。
Description (English)
Nsasoft SpotAuditor is an advanced password restoration software for Nsasoft in the United States. Password used to restore lost or forgotten Windows applications and tools that are more than 40 popular. There is a security loophole in version 5.3.2 of Nsasoft SpotAuditor, which stems from a denial of service gap in the Base64 decryption function, which could lead to a collapse of the application by the attackers by providing an excessive buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Nsasoft
Published
2026-02-12
Last Modified
2026-02-24
References
http://www.nsauditor.com/ https://www.exploit-db.com/exploits/47719 https://www.vulncheck.com/advisories/spotauditor-base-denial-of-service
Share on: