4 matches found
MiracleLinux 7 : gcab-0.7-4.el7 (AXSA:2018-2581:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-2581:01 advisory. gcab: Extracting malformed .cab files causes stack smashing potentially leading to arbitrary code execution CVE-2018-5345 Tenable has extracted the preceding...
USN-7788-1: libmspack vulnerabilities
Jakub Wilk discovered that libmspack did not correctly handle certain integer operations and bounds checking. A remote attacker could possibly use this issue to cause a denial of service. CVE-2015-4467, CVE-2015-4468, CVE-2015-4469, CVE-2015-4472 It was discovered that libmspack incorrectly handl...
USN-3814-1 libmspack vulnerabilities
It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service. CVE-2018-18584, CVE-2018-18585...
DEBIAN-CVE-2010-2800
The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service infinite loop via a malformed MSZIP archive in a .cab file during a 1 test or 2 extract action, related to the libmspack library...