Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2010-08-06T19:31:00
Updated: 2024-08-07T02:46:48.441Z
Reserved: 2010-07-22T00:00:00
Link: CVE-2010-2801
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-08-09T11:58:17.487
Modified: 2024-11-21T01:17:24.190
Link: CVE-2010-2801
Redhat
No data.