610 matches found
Integer overflow
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
UBUNTU-CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
CVE-2014-9556
CVE-2014-9556 affects libmspack 0.4 with an integer overflow in qtmd_decompress that can be triggered by a crafted CAB file, causing a remote denial of service via an infinite loop. Connected advisories indicate the issue is addressed by updates in downstream packages (e.g., cabextract/libmspack)...
CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
openSUSE Security Update : libmspack (openSUSE-SU-2015:0187-1)
libmspack was updated to fix a possible infinite loop caused DoS bnc912214, CVE-2014-9556. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-87. The text description of this plugin...
SUSE-SU-2015:0366-1 Security update for libmspack
libmspack was updated to fix one security issue. This security issue was fixed: - Possible DoS by infinite loop bnc912214, CVE-2014-9556...
Libmspack 'qtmd.c' Infinite Loop Denial of Service Vulnerability
libmspack is a decompression program for various Microsoft packaging formats. Libmspack suffers from a denial of service vulnerability that can be exploited by an attacker to cause the application to enter an infinite loop, which can trigger a denial of service...
libmspack -- frame_end overflow which could cause infinite loop
There is a denial of service vulnerability in libmspack. The libmspack code is built into cabextract, so it is also vulnerable. MITRE reports: Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which...
GLSA-201312-09 : cabextract: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201312-09 cabextract: Multiple vulnerabilities Multiple vulnerabilities have been discovered in cabextract. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to open a...
cabextract: Multiple vulnerabilities
Background cabextract is free software for extracting Microsoft cabinet files. Description Multiple vulnerabilities have been discovered in cabextract. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially-crafted archive ...
Fedora Update for libmspack FEDORA-2010-14135
Check for the Version of libmspack OpenVAS Vulnerability Test Fedora Update for libmspack FEDORA-2010-14135 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for libmspack FEDORA-2010-14135
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 13 : cabextract-1.3-1.fc13 / libmspack-0.2-0.1.20100723alpha.fc13 (2010-14722)
The remote Fedora host is missing one or more security updates : cabextract-1.3-1.fc13 : - Mon Sep 13 2010 Dan Horak - 1.3-1 - updated to 1.3 - built with system copy of libmspack CVE-2010-2800 CVE-2010-2801 libmspack-0.2-0.1.20100723alpha.fc13 : - Mon Aug 30 2010 Dan Horak - 0.2-0.1.20100723alph...
Fedora 14 : cabextract-1.3-1.fc14 / libmspack-0.2-0.1.20100723alpha.fc14 (2010-14135)
Bug 620450 - CVE-2010-2800 cabextract: Infinite loop in MS-ZIP and Quantum decoders - Bug 620454 - CVE-2010-2801 cabextract: Integer wrap-around crash by processing certain .cab files in test archive mode Note that Tenable Network Security has extracted the preceding description block directly...
Fedora 12 : cabextract-1.3-1.fc12 / libmspack-0.2-0.1.20100723alpha.fc12 (2010-14634)
The remote Fedora host is missing one or more security updates : cabextract-1.3-1.fc12 : - Mon Sep 13 2010 Dan Horak - 1.3-1 - updated to 1.3 - built with system copy of libmspack CVE-2010-2800 CVE-2010-2801 libmspack-0.2-0.1.20100723alpha.fc12 : - Mon Aug 30 2010 Dan Horak - 0.2-0.1.20100723alph...
Fedora Update for libmspack FEDORA-2010-14722
Check for the Version of libmspack OpenVAS Vulnerability Test Fedora Update for libmspack FEDORA-2010-14722 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for libmspack FEDORA-2010-14634
Check for the Version of libmspack OpenVAS Vulnerability Test Fedora Update for libmspack FEDORA-2010-14634 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for libmspack FEDORA-2010-14634
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for libmspack FEDORA-2010-14722
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...