Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2010-08-06T19:31:00

Updated: 2024-08-07T02:46:48.441Z

Reserved: 2010-07-22T00:00:00

Link: CVE-2010-2801

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-08-09T11:58:17.487

Modified: 2024-11-21T01:17:24.190

Link: CVE-2010-2801

cve-icon Redhat

No data.