Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service
Vulnerability Description
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally. The identifier VDB-252685 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不恰当的资源关闭或释放
Vulnerability Title
iTop VPN 安全漏洞
Vulnerability Description
iTop VPN是iTop公司的一款 VPN 软件。允许用户通过高级 Salsa20(chacha20)256 位加密保持匿名和安全。 iTop VPN 4.0.0.1及之前版本存在安全漏洞,该漏洞源于组件IOCTL Handler中的ITopVpnCallbackProcess.sys会导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A