ID |
CVE-2003-0032
|
Summary |
Memory leak in libmcrypt before 2.5.5 allows attackers to cause a denial of service (memory exhaustion) via a large number of requests to the application, which causes libmcrypt to dynamically load algorithms via libtool. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:mcrypt:libmcrypt:2.5.1_r4:*:*:*:*:*:*:*
cpe:2.3:a:mcrypt:libmcrypt:2.5.1_r4:*:*:*:*:*:*:*
-
cpe:2.3:a:mcrypt:libmcrypt:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:mcrypt:libmcrypt:2.5.2:*:*:*:*:*:*:*
-
cpe:2.3:a:mcrypt:libmcrypt:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:mcrypt:libmcrypt:2.5.3:*:*:*:*:*:*:*
-
cpe:2.3:a:mcrypt:libmcrypt:2.5_.0:*:*:*:*:*:*:*
cpe:2.3:a:mcrypt:libmcrypt:2.5_.0:*:*:*:*:*:*:*
|
CVSS |
Base: | 5.0 (as of 18-10-2016 - 02:28) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
NONE |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
refmap
via4
|
bid | 6512 | bugtraq | - 20030103 Multiple libmcrypt vulnerabilities
- 20030105 GLSA: libmcrypt
| conectiva | CLA-2003:567 | debian | DSA-228 | suse | SuSE-SA:2003:0010 | xf | libmcrypt-libtool-memory-leak(10988) |
|
Last major update |
18-10-2016 - 02:28 |
Published |
17-01-2003 - 05:00 |
Last modified |
18-10-2016 - 02:28 |