Known Vulnerabilities for products from Libmspack Project
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Libmspack Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-18584 | In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for ... | 6.5 - MEDIUM | 2018-10-23 | 2022-10-25 |
| CVE-2017-11423 | The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows rem... | 5.5 - MEDIUM | 2017-07-18 | 2019-10-03 |
| CVE-2017-6419 | mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote attackers to cause a denial of service (heap-bas... | 7.8 - HIGH | 2017-08-07 | 2018-10-21 |
| CVE-2015-4472 | Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of serv... | 6.8 - MEDIUM | 2015-06-11 | 2016-12-22 |
| CVE-2015-4471 | Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial ... | 4.3 - MEDIUM | 2015-06-11 | 2016-06-09 |
| CVE-2015-4470 | Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of ser... | 4.3 - MEDIUM | 2015-06-11 | 2016-06-09 |
| CVE-2015-4469 | The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attacker... | 4.3 - MEDIUM | 2015-06-11 | 2016-06-09 |
| CVE-2015-4468 | Multiple integer overflows in the search_chunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a d... | 4.3 - MEDIUM | 2015-06-11 | 2016-06-09 |
| CVE-2015-4467 | The chmd_init_decomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows r... | 4.3 - MEDIUM | 2015-06-11 | 2016-06-27 |
| CVE-2014-9732 | The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cas... | 4.3 - MEDIUM | 2015-06-11 | 2016-11-28 |
| CVE-2014-9556 | Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang)... | 5 - MEDIUM | 2015-02-03 | 2018-10-30 |
Known software with vulnerabilities from Libmspack Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libmspack Project | Libmspack | 0.4 |