- EPSS 2.1%
- Veröffentlicht 23.06.2006 00:02:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Directory traversal vulnerability in extract_chmLib example program in CHM Lib (chmlib) before 0.38 allows remote attackers to overwrite arbitrary files via a CHM archive containing files with a .. (dot dot) in their filename.
- EPSS 1%
- Veröffentlicht 16.11.2005 07:42:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in the LZX decompression in CHM Lib (chmlib) 0.35, as used in products such as KchmViewer, has unknown impact and attack vectors.
CVE-2005-2930
- EPSS 2.08%
- Veröffentlicht 28.10.2005 21:02:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Stack-based buffer overflow in the _chm_find_in_PMGL function in chm_lib.c for chmlib before 0.36, as used in products such as KchmViewer, allows user-assisted attackers to execute arbitrary code via a CHM file containing a long element, a different ...
CVE-2005-3318
- EPSS 2.96%
- Veröffentlicht 27.10.2005 10:02:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in the _chm_decompress_block function in CHM lib (chmlib) before 0.37, as used in products such as KchmViewer, allows attackers to execute arbitrary code, a different vulnerability than CVE-2005-2930.