FreeBSD : libmspack -- infinite loop denial of service (43024078-9b63-11df-8983-001d60d86f38)

There is a denial of service vulnerability in libmspack. The libmspack code is built into cabextract, so it is also vulnerable. Secunia reports : The vulnerability is caused due to an error when copying data from an uncompressed block block type 0 and can be exploited to trigger an infinite loop ...

libmspack -- infinite loop denial of service

There is a denial of service vulnerability in libmspack. The libmspack code is built into cabextract, so it is also vulnerable. Secunia reports: The vulnerability is caused due to an error when copying data from an uncompressed block block type 0 and can be exploited to trigger an infinite loop b...

CVE-2005-3501

The cabdfind function in cabd.c of the libmspack library mspack for Clam AntiVirus ClamAV before 0.87.1 allows remote attackers to cause a denial of service infinite loop via a crafted CAB file that causes cabdfind to be called with a zero length...

CVE-2005-3501

The cabdfind function in cabd.c of the libmspack library mspack for Clam AntiVirus ClamAV before 0.87.1 allows remote attackers to cause a denial of service infinite loop via a crafted CAB file that causes cabdfind to be called with a zero length...

DEBIAN-CVE-2005-3501

The cabdfind function in cabd.c of the libmspack library mspack for Clam AntiVirus ClamAV before 0.87.1 allows remote attackers to cause a denial of service infinite loop via a crafted CAB file that causes cabdfind to be called with a zero length...

CVE-2005-3501

The cabdfind function in cabd.c of the libmspack library mspack for Clam AntiVirus ClamAV before 0.87.1 allows remote attackers to cause a denial of service infinite loop via a crafted CAB file that causes cabdfind to be called with a zero length...

CVE-2005-3501

The cabdfind function in cabd.c of the libmspack library mspack for Clam AntiVirus ClamAV before 0.87.1 allows remote attackers to cause a denial of service infinite loop via a crafted CAB file that causes cabdfind to be called with a zero length...

CVE-2005-3501

CVE-2005-3501 affects ClamAV before 0.87.1 via the cabd_find path in libmspack (cab d.c) where a crafted CAB file causes cabd_find to be called with a zero length, leading to a denial of service (infinite loop). The vulnerability is tied to ClamAV's libmspack CAB handling; upgrade to 0.87.1 or la...

Mandrake Linux Security Advisory : clamav (MDKSA-2005:113)

Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack. The updated packages have been patched to correct the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

GLSA-200506-23 : Clam AntiVirus: Denial of Service vulnerability

The remote host is affected by the vulnerability described in GLSA-200506-23 Clam AntiVirus: Denial of Service vulnerability Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack. Impact ...