Lucene search

PRIOn knowledge basePRION:CVE-2017-6307

HistoryFeb 24, 2017 - 4:59 a.m.

Code injection

2017-02-2404:59:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.4%

JSON

An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapi_attr.c:mapi_attr_read(). These might lead to invalid read and write operations, controlled by an attacker.

CPENameOperatorVersion
debian_linuxeq8.0
tnefle1.4.12

CPE	Name	Operator	Version
	debian_linux	eq	8.0
	tnef	le	1.4.12

References

www.debian.org/security/2017/dsa-3798

www.securityfocus.com/bid/96427

github.com/verdammelt/tnef/blob/master/ChangeLog

github.com/verdammelt/tnef/commit/1a17af1ed0c791aec44dbdc9eab91218cc1e335a

security.gentoo.org/glsa/201708-02

www.x41-dsec.de/lab/advisories/x41-2017-004-tnef/