CVE-2019-25557

Published: Mar 21, 2026 Last Modified: Mar 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,9

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 6,2

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

TwistedBrush Pro Studio 24.06 contains a denial of service vulnerability that allows local attackers to crash the application by importing a malformed .srp script file. Attackers can create a .srp file containing an excessively large buffer and import it through the Script Player interface to trigger an application crash.

775

Missing Release of File Descriptor or Handle after Effective Lifetime

Incomplete

Abstraction: Variant Structure: Simple

Common Consequences

Security Scopes Affected:

Availability

Potential Impacts:

Dos: Resource Consumption (Other)

Applicable Platforms

All platforms may be affected

View CWE Details

https://www.exploit-db.com/exploits/46845

https://www.exploit-db.com/exploits/46845

https://www.vulncheck.com/advisories/twistedbrush-pro-studi…

https://www.vulncheck.com/advisories/twistedbrush-pro-studio-denial-of-service-…

http://www.pixarra.com

http://www.pixarra.com