Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service (hang and resource consumption) via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the (1) user or (2) channel name in a Qt dialog, (3) subject common name or (4) email address to the Certificate Wizard, or (5) server name in a tooltip.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mumble 拒绝服务漏洞
Vulnerability Description
Mumble是一套用于游戏中的语音通讯工具。该工具可以让玩家在玩游戏的同时进行实时的语音交流。 Mumble 1.2.6之前1.2.x版本的客户端存在安全漏洞,该漏洞源于启用rich-text的Qt小部件没有充分过滤外部字符串。远程攻击者可借助特制的字符串利用该漏洞强制加载外部文件,造成拒绝服务(挂起和资源消耗)。
CVSS Information
N/A
Vulnerability Type
N/A