Cabextract@1.0 Security Vulnerabilities and Issues — Cabextract@1.0 CVE List

Lucene search

Cabextract ProjectCabextract1.0

3 matches found

CVE•added 2010/08/09 11:58 a.m.•50 views

CVE-2010-2801

Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libms...

5.1CVSS7.7AI score0.04956EPSS

CVE•added 2010/08/09 11:58 a.m.•46 views

CVE-2010-2800

The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.

4.3CVSS6.4AI score0.01203EPSS

CVE•added 2005/01/27 5:0 a.m.•39 views

CVE-2004-0916

Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename.

5CVSS6.4AI score0.01938EPSS