CVE-2019-25658
Received Received - Intake

Local Buffer Overflow in a-Mac Address Change 5.4 Causes DoS

Vulnerability report for CVE-2019-25658, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-04-05

Last updated on: 2026-04-05

Assigner: VulnCheck

Description

a-Mac Address Change 5.4 contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying oversized input to registration form fields. Attackers can paste 212 bytes of data into the 'Your Name', 'Your Company', or 'Register Code' fields and click the Register button to trigger a denial of service crash.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-04-05
Last Modified
2026-04-05
Generated
2026-07-06
AI Q&A
2026-04-06
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

The vulnerability exists in a-Mac Address Change 5.4 and is a local buffer overflow issue. It occurs when a local attacker inputs an oversized amount of data (212 bytes) into certain registration form fields such as 'Your Name', 'Your Company', or 'Register Code'. This causes the application to crash.

Impact Analysis

This vulnerability can lead to a denial of service (DoS) condition by crashing the application when oversized input is supplied. This means legitimate users may be unable to use the application while it is crashed.

Detection Guidance

This vulnerability is a local buffer overflow in the a-Mac Address Change 5.4 application triggered by supplying oversized input (212 bytes) to specific registration form fields.

Detection would involve attempting to reproduce the issue locally by inputting oversized data into the 'Your Name', 'Your Company', or 'Register Code' fields and observing if the application crashes.

Since this is a local application vulnerability, network-based detection commands are not applicable.

No specific commands or automated detection methods are provided in the available information.

Mitigation Strategies

To mitigate this vulnerability, avoid supplying oversized input (212 bytes or more) to the 'Your Name', 'Your Company', or 'Register Code' fields in the a-Mac Address Change 5.4 application.

Restrict local user access to the application to trusted users only, as the vulnerability requires local interaction.

Monitor for application crashes and consider disabling or uninstalling the vulnerable version until a patch or update is available.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2019-25658. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart