Lucene search
HistoryJun 11, 2015 - 2:59 p.m.
CVE-2015-4472
cve-2015-4472
nvd
vulnerability
denial of service
application crash
remote attackers
libmspack
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file.
Affected configurations
Node
libmspack_projectlibmspackRange≤0.4-3
| CPE | Name | Operator | Version |
|---|---|---|---|
| libmspack_project:libmspack | libmspack project libmspack | le | 0.4-3 |
Related
cvelist
cvelist
CVE-2015-4472
2015-06-11 14:00:00
nvd
nvd
CVE-2015-4472
2015-06-11 14:59:07
ubuntucve
ubuntucve
CVE-2015-4472
2015-06-11 00:00:00
debiancve
debiancve
CVE-2015-4472
2015-06-11 14:59:07
prion
prion
Code injection
2015-06-11 14:59:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2215-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0011-1)
2021-04-19 00:00:00
Gentoo Security Advisory GLSA 201506-01
2015-09-29 00:00:00
nessus
nessus
SUSE SLED11 / SLES11 Security Update : libmspack (SUSE-SU-2015:2215-1)
2015-12-09 00:00:00
SUSE SLED12 / SLES12 Security Update : libmspack (SUSE-SU-2016:0011-1)
2016-01-12 00:00:00
GLSA-201506-01 : Adobe Flash Player: Multiple vulnerabilities
2015-06-22 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-06-21 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Related for CVE-2015-4472