Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Memory leak in libmcrypt before 2.5.5 allows attackers to cause a denial of service (memory exhaustion) via a large number of requests to the application, which causes libmcrypt to dynamically load algorithms via libtool.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Libmcrypt内存泄露资源耗竭漏洞
Vulnerability Description
limbcrypt是一款可代替标准UNIX crypt()的加密相关模块,可动态装载。 limbcrypt在装载算法时存在内存泄露问题,远程攻击者可以利用这个漏洞提交重复请求,使mcrypt库泄露大量内存而耗尽系统资源,造成拒绝服务攻击。 当libmcrypt通过libtool每次装载算法时,会有一小部分内存泄露(大概几K字节),在有些长久服务的环境下(WEB服务),攻击者向利用mcrypt库的应用程序重复提交请求,可导致消耗所有系统内存而产生拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A