CVE-2018-18584 vulnerability in Kyzer and Other Products
Published on October 23, 2018

In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-18584

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-18584 are published in these products:

Kyzer Cabextract

Kyzer Limbspack

Canonical Ubuntu Linux

Debian Linux

Red Hat Enterprise Linux (RHEL)

Suse Linux Enterprise Server

Cabextractproject Cabextract

Libmspackproject Libmspack

Starwindsoftware Starwind Virtual San

Exploit Probability

EPSS

6.37%

Percentile

90.83%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-18584 vulnerability in Kyzer and Other ProductsPublished on October 23, 2018

Products Associated with CVE-2018-18584

Exploit Probability

CVE-2018-18584 vulnerability in Kyzer and Other Products
Published on October 23, 2018