Vulnerabilities ›

CVE-2019-25546

Medium ⚡ Exploit Available

CWE-787 — Weakness Type

                    Published: Mar 21, 2026                      ·  Modified: Mar 24, 2026                      ·  Source: NVD                

CVSS v3

6.2

🔗 NVD Official

📄 Description (English)

NetAware 1.20 contains a buffer overflow vulnerability in the Share Name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can trigger a denial of service by pasting a 1000-byte buffer into the Share Name parameter when adding a new share through the Manage Shares interface.

🤖 AI Executive Summary

NetAware 1.20 contains a buffer overflow vulnerability in the Share Name field that allows local attackers to cause denial of service by supplying excessively long input strings. The vulnerability has known exploits available but no patch is currently available from the vendor. Organizations using NetAware 1.20 should immediately assess their exposure and implement compensating controls.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 22, 2026 16:17

🇸🇦 Saudi Arabia Impact Assessment

NetAware is primarily used in enterprise network management and file sharing environments. Saudi organizations in government agencies, financial institutions, and large enterprises using NetAware 1.20 face denial of service risks. Most critical impact would affect: Government IT infrastructure (NCA oversight), Banking sector network operations (SAMA-regulated), Healthcare institutions managing shared medical records, and Telecom operators (STC, Mobily) managing network shares. The local-only attack vector limits exposure but internal threats remain significant.

🏢 Affected Saudi Sectors

Government Banking Healthcare Telecommunications Enterprise IT

🎯 MITRE ATT&CK Techniques

T1499 - Endpoint Denial of Service T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

⚖️ Saudi Risk Score (AI)

5.8

/ 10.0

🔧 Remediation Steps (English)

Immediate Actions:

1. Inventory all systems running NetAware 1.20 across your organization

2. Restrict access to the Manage Shares interface to authorized administrators only

3. Implement network segmentation to limit local access to NetAware systems

4. Monitor for suspicious activity in NetAware logs, particularly failed share creation attempts



Compensating Controls (until patch available):

5. Implement input validation at the application level to reject Share Name entries exceeding 256 characters

6. Deploy application whitelisting to restrict NetAware execution to trusted users

7. Enable detailed logging and alerting for Share Name field modifications

8. Consider upgrading to a newer version of NetAware if available from vendor

9. Isolate NetAware systems on dedicated network segments with restricted access

10. Implement host-based intrusion detection to monitor for buffer overflow exploitation attempts



Detection Rules:

- Alert on Share Name field input exceeding 512 bytes

- Monitor for NetAware application crashes or unexpected terminations

- Track failed administrative operations in NetAware audit logs

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. قم بحصر جميع الأنظمة التي تعمل بـ NetAware 1.20 في جميع أنحاء المنظمة

2. قيد الوصول إلى واجهة إدارة المشاركات للمسؤولين المصرح لهم فقط

3. طبق تقسيم الشبكة لتحديد الوصول المحلي إلى أنظمة NetAware

4. راقب النشاط المريب في سجلات NetAware، خاصة محاولات إنشاء المشاركات الفاشلة

الضوابط التعويضية (حتى توفر التصحيح):

5. طبق التحقق من صحة الإدخال على مستوى التطبيق لرفض إدخالات اسم المشاركة التي تتجاوز 256 حرفاً

6. نشر قائمة بيضاء للتطبيقات لتقييد تنفيذ NetAware للمستخدمين الموثوقين

7. فعّل التسجيل التفصيلي والتنبيهات لتعديلات حقل اسم المشاركة

8. فكر في الترقية إلى نسخة أحدث من NetAware إن توفرت من البائع

9. عزل أنظمة NetAware على قطاعات شبكة مخصصة مع وصول مقيد

10. طبق الكشف عن التطفل على مستوى المضيف لمراقبة محاولات استغلال تجاوز المخزن المؤقت

قواعد الكشف:

- تنبيه عند إدخال حقل اسم المشاركة يتجاوز 512 بايت

- مراقبة أعطال تطبيق NetAware أو الإنهاء غير المتوقع

- تتبع العمليات الإدارية الفاشلة في سجلات تدقيق NetAware

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.5.1.1 - Information security policies and procedures A.8.1.1 - User access management A.12.2.1 - Change management procedures A.12.6.1 - Management of technical vulnerabilities

🔵 SAMA CSF

ID.RA-1 - Asset management and vulnerability identification PR.IP-12 - Information and records management DE.CM-8 - Vulnerability scans

🟡 ISO 27001:2022

A.12.6.1 - Management of technical vulnerabilities A.14.2.1 - Secure development policy A.12.2.1 - Change management

🔗 References & Sources 3

🔗

https://www.exploit-db.com/exploits/46909

disclosure@vulncheck.com

Exploit VDB Entry

🔗

https://www.infiltration-systems.com

disclosure@vulncheck.com

Product

🔗

https://www.vulncheck.com/advisories/netaware-share-name-denial-of-service

disclosure@vulncheck.com

Third Party Advisory

📦 Affected Products / CPE 1 entries

spytech-web:netaware:1.20

📊 CVSS Score

6.2

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity Medium

CVSS Score6.2

CWECWE-787

Exploit ✓ Yes

Patch ✗ No

Published 2026-03-21

Source Feed nvd

🇸🇦 Saudi Risk Score

5.8

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

exploit-available CWE-787

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2019-25546

Introduce Yourself

Sign In Required