Aggregates CVE and security vulnerability intelligence across all cabextract_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption, vendor risk path handling, and vendor risk input validation and related problems; some flaws may lead to vendor impact memory corruption.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2015-2060 | cabextract before 1.6 does not properly check for leading slashes when extracting files, which allows remote attackers to conduct absolute directory traversal attacks via a malformed UTF-8 character that is changed to a UTF-8 encoded slash. | [email protected] | 5.3 | 8.75% | 2019-11-29 | 2024-11-21 |
| CVE-2018-18584 | In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. | [email protected] | 6.5 | 5.83% | 2018-10-23 | 2024-11-21 |
| CVE-2018-14682 | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. | [email protected] | 8.8 | 4.43% | 2018-07-28 | 2024-11-21 |
| CVE-2018-14681 | An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. | [email protected] | 8.8 | 4.43% | 2018-07-28 | 2024-11-21 |
| CVE-2018-14680 | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. | [email protected] | 6.5 | 2.92% | 2018-07-28 | 2024-11-21 |
| CVE-2018-14679 | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash). | [email protected] | 6.5 | 0.99% | 2018-07-28 | 2024-11-21 |
| CVE-2010-2801 | Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library. | [email protected] | 5.1 | 4.96% | 2010-08-09 | 2026-04-29 |
| CVE-2010-2800 | The MS-ZIP decompressor in cabextract before 1.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed MSZIP archive in a .cab file during a (1) test or (2) extract action, related to the libmspack library. | [email protected] | 4.3 | 1.20% | 2010-08-09 | 2026-04-29 |
| CVE-2004-0916 | Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename. | [email protected] | 5.0 | 1.94% | 2005-01-27 | 2026-04-16 |