Primary

Context

LanHelper Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A local buffer overflow vulnerability has been identified in LanHelper version 1.74. This vulnerability allows attackers to crash the application by sending overly long input strings. Exploitation occurs through the 'Form Send Message' feature, where approximately 6000 bytes of data can be pasted into the 'Message text' field, causing a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to crash.

Reproduction

To reproduce this vulnerability, first run LanHelper version 1.74 on a Windows XP SP3 system. Then, copy 6000 bytes of 'A' characters into the clipboard. Navigate to the 'Form Send Message' feature, paste the 6000 bytes into the 'Message text' field, and click the 'Send' button. This action will trigger the buffer overflow, causing the application to crash.

Added: Apr 5, 2026, 9:20 PM

Updated: Apr 5, 2026, 9:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.6

remediation

0.0

relevance

5.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.6

remediation

0.0

relevance

5.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LanHelper Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating