CVE-2010-2800

Severity

43%

Complexity

86%

Confidentiality

48%

The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.

The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P).

Overview

Type

cabextract

First reported 14 years ago

2010-08-09 11:58:00

Last updated 14 years ago

2010-08-09 11:58:00

Affected Software

cabextract 0.1

0.1

cabextract 0.2

0.2

cabextract 0.3

0.3

cabextract 0.4

0.4

cabextract 0.5

0.5

cabextract 0.6

0.6

cabextract 1.0

1.0

cabextract 1.1

1.1

References

http://bugs.gentoo.org/show_bug.cgi?id=329891

http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=90

Patch

http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=95

Patch

[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode

[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode

http://www.cabextract.org.uk/#changes

Patch

ADV-2010-1903

Patch, Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=620450

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.