The MS-ZIP decompressor in cabextract prior to 1.3 allows remote malicious users to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cabextract project cabextract 0.4 |
||
cabextract project cabextract 0.2 |
||
cabextract project cabextract |
||
cabextract project cabextract 1.1 |
||
cabextract project cabextract 1.0 |
||
cabextract project cabextract 0.6 |
||
cabextract project cabextract 0.5 |
||
cabextract project cabextract 0.3 |
||
cabextract project cabextract 0.1 |
Vulmon