WhiteSource Vulnerability Database
We found results for “”
Good to know:
Date: July 28, 2018
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).
Weakness Type (CWE)
Upgrade to version 0.7alpha.
|Attack Vector (AV):||NETWORK|
|Attack Complexity (AC):||LOW|
|Privilegs Required (PR):||NONE|
|User Interaction (UI):||REQUIRED|
|Access Vector (AV):||NETWORK|
|Access Complexity (AC):||MEDIUM|