Primary

Context

ASPRunner Professional Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A local buffer overflow vulnerability has been identified in ASPRunner Professional version 6.0.766. This vulnerability allows attackers to cause a denial-of-service condition by entering an excessively long project name during the project creation process. Specifically, pasting 180 or more characters into the 'Project name' field can trigger an application crash.

Impact

Exploitation of this vulnerability leads to a crash of the ASPRunner Professional application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, first run the ASPRunner Professional application. Then, initiate the project creation wizard and paste 180 or more characters into the 'Project name' field. After clicking the 'Next' button, the application will crash.

Added: Apr 5, 2026, 9:21 PM

Updated: Apr 5, 2026, 9:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

5.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

5.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ASPRunner Professional Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating