Primary

Context

Nsasoft SpotOutlook Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Nsasoft SpotOutlook version 1.2.6. The issue arises in the registration name input field, where attackers can cause the application to crash by overwriting the buffer with 1000 'A' characters. This action renders the application unresponsive.

Impact

Exploitation of this vulnerability leads to a crash of the SpotOutlook application, causing it to become unresponsive.

Reproduction

To reproduce this vulnerability, download and install SpotOutlook version 1.2.6. After installation, navigate to the registration section of the application. Copy and paste 1000 'A' characters into the 'Name' field and click 'Ok'. The application will crash and become unresponsive.

Added: Feb 11, 2026, 9:45 PM

Updated: Feb 11, 2026, 9:45 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nsasoft SpotOutlook Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating