Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
SpotIE Password Recovery Crashes with Long Registration Key
CVE-2019-25463
Summary
A long input in the registration key field can cause the SpotIE Password Recovery application to crash, potentially allowing an attacker to disrupt its operation. This issue affects a specific version of the software and can be exploited by someone with local access. To protect against this, consider updating to a newer version of the software.
Original title
SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an ...
Original description
SpotIE Internet Explorer Password Recovery 2.9.5 contains a denial of service vulnerability in the registration key input field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 256-character payload into the Key field during registration to trigger a buffer overflow and crash the application.
nvd CVSS3.1
6.2
nvd CVSS4.0
6.9
Vulnerability type
CWE-787
Out-of-bounds Write
Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026