Primary

Context

Nsasoft Nsauditor Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Nsasoft Nsauditor version 3.2.0.0. The issue arises in the registration name input field, where attackers can paste a payload of 1000 bytes of repeated characters, leading to an application crash. This vulnerability exploits the lack of input size validation, causing the application to become unresponsive.

Impact

Exploitation of this vulnerability causes the application to crash, disrupting any ongoing tasks or processes.

Reproduction

To reproduce this vulnerability, first create a payload of 1000 bytes of repeated characters using a Python script. Save this payload to a file named 'POC.txt'. Then, run Nsauditor and navigate to the registration code entry field. Paste the contents of 'POC.txt' into the 'Name' field and click 'OK'. The application will crash, demonstrating the denial-of-service vulnerability.

Added: Feb 5, 2026, 5:44 PM

Updated: Feb 5, 2026, 9:27 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nsasoft Nsauditor Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating