Primary

Context

Softros LAN Messenger Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Softros LAN Messenger version 9.2. This vulnerability allows local attackers to crash the application by entering an excessively long string, up to 2000 characters, in the 'Log Files Location' custom path parameter. The crash occurs when the 'OK' button is clicked.

Impact

Exploiting this vulnerability leads to a crash of the Softros LAN Messenger application, causing a denial-of-service condition where the application becomes unresponsive or unavailable.

Reproduction

To reproduce this vulnerability, open Softros LAN Messenger 9.2 and navigate to the 'Logging' section. Select 'Custom Location' in the 'Log Files Location' field and paste a string of 2000 characters. After clicking 'OK', the application will crash.

Added: Mar 30, 2026, 12:23 PM

Updated: Mar 30, 2026, 12:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Softros LAN Messenger Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating