mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
118 lines
4.2 KiB
JSON
118 lines
4.2 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2010-2801",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Integer signedness error in the Quantum decompressor in cabextract before 1.3, when archive test mode is used, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Quantum archive in a .cab file, related to the libmspack library."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode",
|
|
"refsource" : "MLIST",
|
|
"url" : "http://marc.info/?l=oss-security&m=128076168623266&w=2"
|
|
},
|
|
{
|
|
"name" : "[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode",
|
|
"refsource" : "MLIST",
|
|
"url" : "http://marc.info/?l=oss-security&m=128077976522470&w=2"
|
|
},
|
|
{
|
|
"name" : "http://bugs.gentoo.org/show_bug.cgi?id=329891",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://bugs.gentoo.org/show_bug.cgi?id=329891"
|
|
},
|
|
{
|
|
"name" : "http://libmspack.svn.sourceforge.net/viewvc/libmspack/libmspack/trunk/mspack/qtmd.c?r1=114&r2=113",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://libmspack.svn.sourceforge.net/viewvc/libmspack/libmspack/trunk/mspack/qtmd.c?r1=114&r2=113"
|
|
},
|
|
{
|
|
"name" : "http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=118",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=118"
|
|
},
|
|
{
|
|
"name" : "http://www.cabextract.org.uk/#changes",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://www.cabextract.org.uk/#changes"
|
|
},
|
|
{
|
|
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=620454",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=620454"
|
|
},
|
|
{
|
|
"name" : "DSA-2087",
|
|
"refsource" : "DEBIAN",
|
|
"url" : "http://www.debian.org/security/2010/dsa-2087"
|
|
},
|
|
{
|
|
"name" : "42173",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/42173"
|
|
},
|
|
{
|
|
"name" : "ADV-2010-1903",
|
|
"refsource" : "VUPEN",
|
|
"url" : "http://www.vupen.com/english/advisories/2010/1903"
|
|
},
|
|
{
|
|
"name" : "ADV-2010-1997",
|
|
"refsource" : "VUPEN",
|
|
"url" : "http://www.vupen.com/english/advisories/2010/1997"
|
|
},
|
|
{
|
|
"name" : "cabextract-archive-code-execution(60891)",
|
|
"refsource" : "XF",
|
|
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/60891"
|
|
}
|
|
]
|
|
}
|
|
}
|