Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c was only intended as a source-code example, not a supported application
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Libmspack 路径遍历漏洞
Vulnerability Description
Libmspack是一款能够对CAB、CHM和HLP等格式文件进行压缩和解压的库。 Libmspack 0.8alpha之前版本中的chmextract sample程序的chmextract.c文件存在路径遍历漏洞。攻击者可借助特制的URL请求利用该漏洞在系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A