CVE-2014-9556

2015-02-03 17:59:05 2018-10-30 17:27:35

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Libmspack Project Libmspack 0.4

Libmspack project - Libmspack

Advisory	Patch	Confirmed	Link
			https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773041
			[oss-security] 20150107 Re: CVE Request: libmspack: fram...
			MDVSA-2015:041
			[oss-security] 20150101 CVE Request: libmspack: frame_en...
			openSUSE-SU-2015:0187
			http://advisories.mageia.org/MGASA-2015-0052.html

CVE-2014-9556

2015-02-03 17:59:05 2018-10-30 17:27:35

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)