CVE-2014-9732
EPSS 0.40%發布日:2015/6/11修改日:2026/4/28
也稱為:DEBIAN-CVE-2014-9732
描述
The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive.
受影響套件(1)
- Debian/libmspackfrom 0, < 0.5-1