Primary

Context

iNetTools for iOS Denial-of-Service Vulnerability in Whois Feature

Vulnerability

A denial-of-service vulnerability has been identified in iNetTools for iOS version 8.20. The issue arises in the Whois feature, where attackers can crash the application by inputting a specially crafted 98-character buffer into the Domain Name field. This manipulation triggers an application crash, disrupting the user's experience.

Impact

Exploitation of this vulnerability leads to a crash of the iNetTools application, causing a denial-of-service condition where the app becomes unresponsive or unavailable to the user.

Reproduction

To reproduce this vulnerability, first run a Python script that generates a 98-character buffer and copies it to the clipboard. Then, open the iNetTools application on an iOS device, navigate to the Whois feature, and paste the clipboard content into the Domain Name field. Starting the Whois lookup will result in the application crashing.

Added: Feb 12, 2026, 11:20 PM

Updated: Feb 12, 2026, 11:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

iNetTools for iOS Denial-of-Service Vulnerability in Whois Feature

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating