Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

485 matches found

OSV
OSVadded 2015/06/11 2:59 p.m.3 views

DEBIAN-CVE-2014-9732

The cabdextract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted CAB...

4.3CVSS6.7AI score0.07164EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2015/06/11 2:59 p.m.19 views

CVE-2014-9732

The cabdextract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted CAB...

4.3CVSS7.2AI score0.07164EPSS
Exploits1References4
OSV
OSVadded 2015/06/11 2:59 p.m.1 views

UBUNTU-CVE-2015-4470

Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted CAB archive...

4.3CVSS7.3AI score0.01455EPSS
Exploits1References5
OSV
OSVadded 2015/06/11 2:59 p.m.0 views

UBUNTU-CVE-2015-4467

The chmdinitdecomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted CHM file...

4.3CVSS7.3AI score0.01456EPSS
Exploits1References7
OSV
OSVadded 2015/06/11 2:59 p.m.2 views

UBUNTU-CVE-2014-9732

The cabdextract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted CAB...

4.3CVSS7.3AI score0.07164EPSS
Exploits1References5
NVD
NVDadded 2015/06/11 2:59 p.m.15 views

CVE-2014-9732

The cabdextract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted CAB...

4.3CVSS6.4AI score0.07164EPSS
Exploits1References3
OSV
OSVadded 2015/06/11 2:59 p.m.1 views

UBUNTU-CVE-2015-4471

Off-by-one error in the lzxddecompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service buffer under-read and application crash via a crafted CAB archive...

4.3CVSS7.3AI score0.02319EPSS
Exploits1References6
OSV
OSVadded 2015/06/11 2:59 p.m.0 views

UBUNTU-CVE-2015-4468

Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

4.3CVSS7.3AI score0.01456EPSS
Exploits1References7
CVE
CVEadded 2015/06/11 2:0 p.m.60 views

CVE-2015-4471

CVE-2015-4471 affects libmspack (component: lzxd_decompress in lzxd.c) with an off-by-one error in pre-0.5 versions. A crafted CAB archive can trigger a denial of service via a buffer under-read. Affected products are libmspack deployments; remote attackers can exploit it without authentication. ...

4.3CVSS6.4AI score0.02319EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2015/06/11 2:0 p.m.49 views

CVE-2015-4467

CVE-2015-4467 relates to libmspack prior to 0.5, where chmd_init_decomp does not validate the reset interval, enabling a remote attacker to trigger a divide-by-zero in CHM processing and crash the application (DoS). The issue is rooted in improper bounds/interval handling in the chmd.c path; an c...

4.3CVSS6.5AI score0.01456EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2015/06/11 2:0 p.m.20 views

CVE-2015-4467

The chmdinitdecomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted CHM file...

6.2AI score0.01456EPSS
Exploits1References4
CVE
CVEadded 2015/06/11 2:0 p.m.57 views

CVE-2015-4468

CVE-2015-4468 affects libmspack, specifically the CHM handling in the chmd.c path where the search_chunk function and related integer operations trigger overflows. Connected sources describe a denial-of-service impact (buffer over-read/crash) when processing crafted CHM files, caused by improper ...

4.3CVSS6.5AI score0.01456EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2015/06/11 2:0 p.m.20 views

CVE-2015-4469

The chmdreadheaders function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

6.3AI score0.01456EPSS
Exploits1References4
Cvelist
Cvelistadded 2015/06/11 2:0 p.m.29 views

CVE-2015-4468

Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

6.3AI score0.01456EPSS
Exploits1References4
CVE
CVEadded 2015/06/11 2:0 p.m.54 views

CVE-2015-4469

CVE-2015-4469 corresponds to a vulnerability in libmspack where chmd_read_headers() in chmd.c does not validate name lengths. This can be triggered by a crafted CHM file to cause a denial of service via a buffer over-read and application crash. The security issue is tied to libmspack prior to ver...

4.3CVSS6.5AI score0.01456EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2015/06/11 2:0 p.m.60 views

CVE-2015-4472

CVE-2015-4472 is a vulnerability in libmspack prior to 0.5 where an off-by-one error in the READ_ENCINT macro (in chmd.c) can be triggered by a crafted CHM file, potentially causing a denial of service (application crash) and possibly other impact. It affects libmspack’s CHM/CAB handling and is d...

6.8CVSS7.3AI score0.01586EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2015/06/11 2:0 p.m.63 views

CVE-2015-4470

CVE-2015-4470 is an off-by-one error in the inflate function (mszipd.c) of libmspack prior to 0.5, enabling remote DoS (buffer over-read) via a crafted CAB archive. Several advisories note fixes in libmspack via SUSE security updates (e.g., SUSE-SU-2015/2016-1x) addressing this and related CVEs (...

4.3CVSS6.4AI score0.01455EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2015/06/11 2:0 p.m.19 views

CVE-2015-4472

Off-by-one error in the READENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted CHM file...

6.8CVSS7.1AI score0.01586EPSS
Exploits1
Debian CVE
Debian CVEadded 2015/06/11 2:0 p.m.19 views

CVE-2015-4467

The chmdinitdecomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted CHM file...

4.3CVSS6.2AI score0.01456EPSS
Exploits1
Debian CVE
Debian CVEadded 2015/06/11 2:0 p.m.20 views

CVE-2015-4469

The chmdreadheaders function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...

4.3CVSS6.3AI score0.01456EPSS
Exploits1
Rows per page
Query Builder