Lucene search

[email protected]CVE-2004-2167

HistoryJul 10, 2005 - 4:00 a.m.

CVE-2004-2167

2005-07-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2167

buffer overflow

latex2rtf

remote code execution

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.111 Low

EPSS

Percentile

95.2%

JSON

Multiple buffer overflows in LaTeX2rtf 1.9.15, and possibly other versions, allow remote attackers to execute arbitrary code via (1) the expandmacro function, and possibly (2) Environments and (3) TranslateCommand.

Affected configurations

NVD

Node

latex2rtflatex2rtfMatch1.9.15

CPENameOperatorVersion
latex2rtf:latex2rtflatex2rtfeq1.9.15

CPE	Name	Operator	Version
latex2rtf:latex2rtf	latex2rtf	eq	1.9.15

References

cvs.sourceforge.net/viewcvs.py/latex2rtf/latex2rtf/definitions.c?rev=1.22&view=log

www.osvdb.org/displayvuln.php?osvdb_id=10216

www.securityfocus.com/bid/11233

www.securitytracker.com/alerts/2004/Sep/1011367.html

exchange.xforce.ibmcloud.com/vulnerabilities/17460

exchange.xforce.ibmcloud.com/vulnerabilities/17487

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.111 Low

EPSS

Percentile

95.2%

JSON

Related for CVE-2004-2167

debiancve1 nvd1 cvelist1