Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file.
Base Score: 6.8
Impact Score: 6.4
Exploitability Score: 8.6
cpe:2.3:a:libmspack_project:libmspack:*:*:*:*:*:*:*:* versions up to 0.4-3 (inclusive)
View all (3 total)