Primary

Context

Nsasoft SpotIE Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Nsasoft SpotIE version 2.9.5. The issue arises in the registration key input field, where attackers can paste a 1000-character buffer payload to crash the application. This vulnerability is classified as a 'Classic Buffer Overflow' according to the CWE.

Impact

Exploitation of this vulnerability leads to a crash of the SpotIE application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, download and install SpotIE version 2.9.5. After installation, navigate to the registration section and enter the 'Key' field. Generate a payload of 1000 characters, preferably using a script, and paste it into the 'Key' field. Once the payload is pasted, click 'Ok' to trigger the application crash.

Added: Feb 11, 2026, 9:32 PM

Updated: Feb 11, 2026, 9:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

3.0

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

3.0

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nsasoft SpotIE Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating