CVSS: 6.5EPSS: 3%CPEs: 19EXPL: 0CVE-2018-18584 – libmspack: Out-of-bounds write in mspack/cab.h
https://notcve.org/view.php?id=CVE-2018-18584
23 Oct 2018 — In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. En mspack/cab.h en libmspack en versiones anteriores a la 0.8alpha y cabextract en versiones anteriores a la 1.8, el búfer de entrada de bloques CAB es un byte más pequeño para el bloque Quantum máximo, lo que conduce a una escritura fuera de límites. USN-3814-1 fixed several vulnerabilities in libmspack. In Ubuntu 14.04 li... • https://access.redhat.com/errata/RHSA-2019:2049 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2018-14682 – libmspack: off-by-one error in the TOLOWER() macro for CHM decompression
https://notcve.org/view.php?id=CVE-2018-14682
28 Jul 2018 — An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. Se ha descubierto un problema en mspack/chmd.c en libmspack en versiones anteriores a la 0.7alpha. Hay un error por un paso en la macro TOLOWER() para la descompresión CHM. Hanno Boeck discovered that libmspack incorrectly handled certain CHM files. • http://www.openwall.com/lists/oss-security/2018/07/26/1 • CWE-193: Off-by-one Error •
CVSS: 6.5EPSS: 0%CPEs: 16EXPL: 0CVE-2018-14680 – libmspack: off-by-one error in the CHM chunk number validity checks
https://notcve.org/view.php?id=CVE-2018-14680
28 Jul 2018 — An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. Se ha descubierto un problema en mspack/chmd.c en libmspack en versiones anteriores a la 0.7alpha. No rechaza los nombres de archivos CHM en blanco. Several vulnerabilities were discovered in libsmpack, a library used to handle Microsoft compression formats. • http://www.openwall.com/lists/oss-security/2018/07/26/1 • CWE-20: Improper Input Validation CWE-193: Off-by-one Error •
CVSS: 6.5EPSS: 0%CPEs: 17EXPL: 0CVE-2018-14679 – libmspack: off-by-one error in the CHM PMGI/PMGL chunk number validity checks
https://notcve.org/view.php?id=CVE-2018-14679
28 Jul 2018 — An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash). Se ha descubierto un problema en mspack/chmd.c en libmspack en versiones anteriores a la 0.7alpha. Hay un error por un paso en las comprobaciones de validez de los números de chunk de CHM PMGI/PMGL que podría conducir a una denegación de servicio (referencia de datos... • http://www.openwall.com/lists/oss-security/2018/07/26/1 • CWE-193: Off-by-one Error •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2018-14681 – libmspack: out-of-bounds write in kwajd_read_headers in mspack/kwajd.c
https://notcve.org/view.php?id=CVE-2018-14681
28 Jul 2018 — An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. Se ha descubierto un problema en kwajd_read_headers en mspack/kwajd.c en libmspack en versiones anteriores a la 0.7alpha. Las extensiones de encabezado de archivo KWAJ incorrectas pueden provocar una sobrescritura de uno o dos bytes. Hanno Boeck discovered that libmspack incorrectly handled certain CHM files. • http://www.openwall.com/lists/oss-security/2018/07/26/1 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1CVE-2015-2060 – Mandriva Linux Security Advisory 2015-064
https://notcve.org/view.php?id=CVE-2015-2060
27 Mar 2015 — cabextract before 1.6 does not properly check for leading slashes when extracting files, which allows remote attackers to conduct absolute directory traversal attacks via a malformed UTF-8 character that is changed to a UTF-8 encoded slash. cabextract versiones anteriores a 1.6, no comprueba apropiadamente las barras diagonales cuando se extraen archivos, lo que permite a atacantes remotos realizar ataques de salto de directorio absolutos por medio de un carácter UTF-8 malformado que es cambiado a una barra... • http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151145.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.5EPSS: 4%CPEs: 9EXPL: 0CVE-2010-2800 – Gentoo Linux Security Advisory 201312-09
https://notcve.org/view.php?id=CVE-2010-2800
06 Aug 2010 — The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library. El de-compresor MS-ZIP en cabextract anteriores a v1.3 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de un fichero MSZIP manipulado en un fichero .cab durante un (1) test o (2) acción extract, relacionado con la librería libmspack... • http://bugs.gentoo.org/show_bug.cgi?id=329891 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 11%CPEs: 9EXPL: 0CVE-2010-2801 – Gentoo Linux Security Advisory 201312-09
https://notcve.org/view.php?id=CVE-2010-2801
06 Aug 2010 — Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library. Error de presencia de signo en el decompresor Quantum en cabextract anteriores a v1.3, cuando está activado el modo test, permite a atacantes remotos asistidos por usuarios, provocar una denegación d... • http://bugs.gentoo.org/show_bug.cgi?id=329891 • CWE-189: Numeric Errors •