CNNVD-202602-2170 Information

CNNVD ID

CNNVD-202602-2170

Related CVE

CVE-2019-25336

• CNNVD Published: 2026-02-12

Description (Chinese)

Nsasoft SpotAuditor是美国Nsasoft公司的一种高级密码恢复软件。用于恢复超过 40 种流行的 Windows 程序和工具丢失或忘记的密码。 Nsasoft SpotAuditor 5.3.2版本存在安全漏洞，该漏洞源于Base64加密密码工具存在本地缓冲区溢出，可能导致执行任意代码。

Description (English)

Nsasoft SpotAuditor is an advanced password restoration software for Nsasoft in the United States. Password used to restore lost or forgotten Windows applications and tools that are more than 40 popular. There is a security loophole in version 5.3.2 of Nsasoft SpotAuditor, which stems from the presence of a local buffer zone in the Base64 encryption password tool, which could lead to the implementation of any code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Nsasoft

Published

2026-02-12

Last Modified

2026-02-24

References

http://www.nsauditor.com/ https://www.exploit-db.com/exploits/47719 https://www.exploit-db.com/exploits/47759 https://www.vulncheck.com/advisories/spotauditor-base-local-buffer-overflow-seh