Cabextract Project

cabextract_project

9 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (9)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-2060 1Cabextract Project 1Cabextract Nov 21, 2024 Nov 29, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 cabextract before 1.6 does not properly check for leading slashes when extracting files, which allows remote attackers to conduct absolute directory traversal attacks via a malformed UTF-8 character that is changed to a...Show more cabextract before 1.6 does not properly check for leading slashes when extracting files, which allows remote attackers to conduct absolute directory traversal attacks via a malformed UTF-8 character that is changed to a UTF-8 encoded slash.Show less
CVE-2018-18584 7Cabextract Project CanonicalDebian+4 more 7Cabextract Debian LinuxEnterprise Linux+4 more Nov 21, 2024 Oct 23, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.
CVE-2018-14682 5Cabextract Cabextract ProjectCanonical+2 more 8Ansible Tower CabextractDebian Linux+5 more Nov 21, 2024 Jul 28, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.
CVE-2018-14681 5Cabextract Cabextract ProjectCanonical+2 more 8Ansible Tower CabextractDebian Linux+5 more Nov 21, 2024 Jul 28, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.
CVE-2018-14680 5Cabextract Cabextract ProjectCanonical+2 more 8Ansible Tower CabextractDebian Linux+5 more Nov 21, 2024 Jul 28, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.
CVE-2018-14679 5Cabextract Cabextract ProjectCanonical+2 more 8Ansible Tower CabextractDebian Linux+5 more Nov 21, 2024 Jul 28, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference...Show more An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).Show less
CVE-2010-2801 1Cabextract Project 1Cabextract Apr 29, 2026 Aug 9, 2010 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute ar...Show more Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library.Show less
CVE-2010-2800 1Cabextract Project 1Cabextract Apr 29, 2026 Aug 9, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the l...Show more The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.Show less
CVE-2004-0916 1Cabextract Project 1Cabextract Apr 16, 2026 Jan 27, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename.