Lucene search
HistoryJun 11, 2015 - 2:59 p.m.
CVE-2015-4472
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file.
Affected configurations
Node
libmspack_projectlibmspackRange≤0.4-3
Related
cvelist
cvelist
CVE-2015-4472
2015-06-11 14:00:00
cve
cve
CVE-2015-4472
2015-06-11 14:59:07
ubuntucve
ubuntucve
CVE-2015-4472
2015-06-11 00:00:00
debiancve
debiancve
CVE-2015-4472
2015-06-11 14:59:07
prion
prion
Code injection
2015-06-11 14:59:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2215-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0011-1)
2021-04-19 00:00:00
Gentoo Security Advisory GLSA 201506-01
2015-09-29 00:00:00
nessus
nessus
SUSE SLED11 / SLES11 Security Update : libmspack (SUSE-SU-2015:2215-1)
2015-12-09 00:00:00
SUSE SLED12 / SLES12 Security Update : libmspack (SUSE-SU-2016:0011-1)
2016-01-12 00:00:00
GLSA-201506-01 : Adobe Flash Player: Multiple vulnerabilities
2015-06-22 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-06-21 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.008 Low
EPSS
Percentile
82.0%
Related for NVD:CVE-2015-4472