3 matches found
UBUNTU-CVE-2017-14731
ofxprocfile in ofxpreproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an ofxdump call...
DEBIAN-CVE-2017-2816
An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...
PT-2017-15554 · Libofx +1 · Libofx +1
Name of the Vulnerable Software and Affected Versions: LibOFX version 0.9.11 Description: A buffer overflow issue exists in the tag parsing functionality. This can be triggered by a specially crafted OFX file, causing a write out of bounds and resulting in a buffer overflow on the stack. An...