Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libmspack vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2801
Integer signedness error in the Quantum decompressor in cabextract prior to 1.3, when archive test mode is used, allows user-assisted remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab...
Cabextract Project Cabextract 1.1
Cabextract Project Cabextract 1.0
Cabextract Project Cabextract 0.6
Cabextract Project Cabextract 0.5
Cabextract Project Cabextract
Cabextract Project Cabextract 0.2
Cabextract Project Cabextract 0.1
Cabextract Project Cabextract 0.4
Cabextract Project Cabextract 0.3
5.5
CVSSv3
CVE-2018-1000085
ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR...
Clamav Clamav 0.99.3
Debian Debian Linux 7.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
9.8
CVSSv3
CVE-2012-6706
A VMSF_DELTA memory corruption exists in unrar prior to 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine prior to 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative va...
Sophos Threat Detection Engine
Rarlab Unrar
5.5
CVSSv3
CVE-2018-0202
clamscan in ClamAV prior to 0.99.4 contains a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanisms when handling Porta...
Clamav Clamav
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 7.0
1 Github repository
NA
CVE-2005-3501
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) prior to 0.87.1 allows remote malicious users to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.
Clamav Clamav 0.14
Clamav Clamav 0.01
Clamav Clamav 0.21
Clamav Clamav 0.22
Clamav Clamav 0.15
Clamav Clamav 0.71
Clamav Clamav 0.72
Clamav Clamav 0.73
Clamav Clamav 0.74
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.60p
Clamav Clamav 0.68
Clamav Clamav 0.67
Clamav Clamav 0.70
Clamav Clamav 0.54
Clamav Clamav 0.60
Clamav Clamav 0.52
Clamav Clamav 0.53
Clamav Clamav 0.80
Clamav Clamav 0.86.2
Clamav Clamav 0.86
5.5
CVSSv3
CVE-2017-6418
libclamav/message.c in ClamAV 0.99.2 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted e-mail message.
Clamav Clamav 0.99.2
5.5
CVSSv3
CVE-2017-6420
The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote malicious users to cause a denial of service (use-after-free) via a crafted PE file with WWPack compression.
Clamav Clamav 0.99.2
7.5
CVSSv3
CVE-2017-12374
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input validation checking mechanism...
Debian Debian Linux 7.0
Clamav Clamav
7.5
CVSSv3
CVE-2017-12375
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input validation checking mechanism...
Debian Debian Linux 7.0
Clamav Clamav
9.8
CVSSv3
CVE-2017-12377
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerability is due to improper in...
Debian Debian Linux 7.0
Clamav Clamav
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »