Mcrypt : Security Vulnerabilities, CVEs, (Denial of service)

CVE-2012-4527

Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name. NOTE: it is not clear whether this is a vulnerability.
Max CVSS
6.8
EPSS Score
4.41%
Published
2012-11-21
Updated
2023-02-13

CVE-2012-4426

Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via vectors involving (1) errors.c or (2) mcrypt.c.
Max CVSS
6.8
EPSS Score
4.09%
Published
2012-11-21
Updated
2016-12-08

CVE-2003-0032

Memory leak in libmcrypt before 2.5.5 allows attackers to cause a denial of service (memory exhaustion) via a large number of requests to the application, which causes libmcrypt to dynamically load algorithms via libtool.
Max CVSS
5.0
EPSS Score
0.38%
Published
2003-01-17
Updated
2016-10-18

CVE-2003-0031

Multiple buffer overflows in libmcrypt before 2.5.5 allow attackers to cause a denial of service (crash).
Max CVSS
7.5
EPSS Score
0.40%
Published
2003-01-17
Updated
2016-10-18
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close