CVE-2014-9732 in libmspackinfo

Zusammenfassung

von MITRE

The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservieren

11.06.2015

Veröffentlichung

11.06.2015

Moderieren

akzeptiert

Eintrag

VDB-75845

CPE

bereit

EPSS

0.07164

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!