libmspack is vulnerable to arbitrary code execution. A stack-based buffer overflow in the function cabd_read_string
function in mspack/cabd.c
allows a remote attacker to execute arbitrary code on the system or cause an application crash via a malicious CAB file.
CPE | Name | Operator | Version |
---|---|---|---|
libmspack:3.3 | eq | 0.5_alpha-r0 | |
libmspack:3.3 | eq | 0.5_alpha-r0 |