WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buf…

WinMTR version 0.91 contains a denial of service vulnerability that allows attackers to crash the application through a buffer overflow condition. The vulnerability can be triggered by sending a malformed payload file containing a large buffer of repeated characters. Attackers can exploit this by creating a specially crafted input file with 238 bytes of data. The buffer overflow condition causes the application to crash, resulting in denial of service. This affects the WinMTR network diagnostic tool used for traceroute and ping functionality.