CVE-2012-4409
EPSS 58.7%發布日:2012/11/21修改日:2026/4/28
描述
Stack-based buffer overflow in the check_file_head function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted header containing long salt data that is not properly handled during decryption.
受影響套件(1)
- Debian/mcryptfrom 0, < 2.6.8-1.1