Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libmspack project libmspack vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-4468
Multiple integer overflows in the search_chunk function in chmd.c in libmspack prior to 0.5 allow remote malicious users to cause a denial of service (buffer over-read and application crash) via a crafted CHM file.
Libmspack Project Libmspack
4.3
CVSSv2
CVE-2015-4470
Off-by-one error in the inflate function in mszipd.c in libmspack prior to 0.5 allows remote malicious users to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive.
Libmspack Project Libmspack
6.8
CVSSv2
CVE-2015-4472
Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack prior to 0.5 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file.
Libmspack Project Libmspack
4.3
CVSSv2
CVE-2014-9732
The cabd_extract function in cabd.c in libmspack prior to 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote malicious users to cause a denial of service (NULL pointer dereference and application...
Libmspack Project Libmspack
5
CVSSv2
CVE-2014-9556
Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote malicious users to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.
Libmspack Project Libmspack 0.4
5.1
CVSSv2
CVE-2010-2801
Integer signedness error in the Quantum decompressor in cabextract prior to 1.3, when archive test mode is used, allows user-assisted remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab...
Cabextract Project Cabextract
Cabextract Project Cabextract 1.1
Cabextract Project Cabextract 0.4
Cabextract Project Cabextract 0.5
Cabextract Project Cabextract 0.1
Cabextract Project Cabextract 0.3
Cabextract Project Cabextract 0.2
Cabextract Project Cabextract 0.6
Cabextract Project Cabextract 1.0
4.3
CVSSv2
CVE-2010-2800
The MS-ZIP decompressor in cabextract prior to 1.3 allows remote malicious users to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.
Cabextract Project Cabextract
Cabextract Project Cabextract 1.1
Cabextract Project Cabextract 0.4
Cabextract Project Cabextract 0.5
Cabextract Project Cabextract 0.1
Cabextract Project Cabextract 0.3
Cabextract Project Cabextract 0.2
Cabextract Project Cabextract 0.6
Cabextract Project Cabextract 1.0
4.3
CVSSv2
CVE-2005-3501
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) prior to 0.87.1 allows remote malicious users to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.
Clamav Clamav 0.86.2
Clamav Clamav 0.02
Clamav Clamav 0.8
Clamav Clamav 0.15
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.70
Clamav Clamav 0.68.1
Clamav Clamav 0.03
Clamav Clamav 0.74
Clamav Clamav
Clamav Clamav 0.86.1
Clamav Clamav 0.71
Clamav Clamav 0.60p
Clamav Clamav 0.80
Clamav Clamav 0.85.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2