Primary

Context

NVClient Stack Buffer Overflow Vulnerability Allowing Denial-of-Service

Vulnerability

A stack buffer overflow vulnerability has been identified in NVClient version 5.0, specifically within the user configuration contact field. This vulnerability allows attackers to overwrite 846 bytes of memory by pasting a crafted payload into the contact box, leading to a crash of the application and causing a denial-of-service condition.

Impact

Exploitation of this vulnerability causes the application to crash, creating a denial-of-service condition.

Reproduction

To reproduce this vulnerability, log into NVClient 5.0 and navigate to the user configuration section. Click 'Add users' and fill in the username and password fields. Then, paste the crafted payload, consisting of 846 bytes of repeated characters, into the contact box. After clicking 'OK', the application will crash.

Added: Dec 15, 2025, 9:20 PM

Updated: Dec 15, 2025, 10:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.8

remediation

0.0

relevance

1.6

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.8

remediation

0.0

relevance

1.6

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVClient Stack Buffer Overflow Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating