CVE-2014-9556 - Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a

CVE-2014-9556

Summary

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

References

Vulnerable Configurations

cpe:2.3:a:libmspack_project:libmspack:0.4:*:*:*:*:*:*:*
cpe:2.3:a:libmspack_project:libmspack:0.4:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 30-10-2018 - 16:27)
Impact:
Exploitability:

CWE

CWE-189

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

confirm	http://advisories.mageia.org/MGASA-2015-0052.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773041
mandriva	MDVSA-2015:041
mlist	[oss-security] 20150101 CVE Request: libmspack: frame_end overflow which could cause infinite loop [oss-security] 20150107 Re: CVE Request: libmspack: frame_end overflow which could cause infinite loop
secunia	62793
suse	openSUSE-SU-2015:0187

Last major update

30-10-2018 - 16:27

Published

03-02-2015 - 16:59

Last modified

30-10-2018 - 16:27