VYPR
Unrated severityNVD Advisory· Published Jun 11, 2015· Updated Jun 17, 2026

CVE-2014-9732

CVE-2014-9732

Description

The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

20

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.