Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5
CVE-2019-1010305
- EPSS 0.52%
- Veröffentlicht 15.07.2019 15:15:11
- Zuletzt bearbeitet 21.11.2024 04:18:08
libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm...
4.3
CVE-2018-18585
- EPSS 0.48%
- Veröffentlicht 23.10.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:12
chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).
5.3
CVE-2018-18586
- EPSS 0.52%
- Veröffentlicht 23.10.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:56:12
chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulner...
1