Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/06/2015 Updated: 09/06/2016

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Multiple integer overflows in the search_chunk function in chmd.c in libmspack prior to 0.5 allow remote malicious users to cause a denial of service (buffer over-read and application crash) via a crafted CHM file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libmspack project libmspack

Debian Bug report logs - #774726 libmspack: CVE-2015-4468 CVE-2015-4469 Package: libmspack0; Maintainer for libmspack0 is Marc Dequènes (Duck) <Duck@DuckCorporg>; Source for libmspack0 is src:libmspack (PTS, buildd, popcon) Reported by: Jakub Wilk <jwilk@debianorg> Date: Tue, 6 Jan 2015 20:21:06 UTC Severity: gr ...

CWE-189 http://anonscm.debian.org/cgit/collab-maint/libmspack.git/diff/debian/patches/fix-pointer-arithmetic-overflow.patch?id=a25bb144795e526748b57884daf365732c7e2295 https://bugs.debian.org/774726 http://openwall.com/lists/oss-security/2015/02/03/11 http://www.securityfocus.com/bid/72486 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774726 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-4468

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect