19 matches found
EUVD-2017-2747
Malware in sbrugna...
EUVD-2003-0188
Malware in sbrugna...
EUVD-2023-50565
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-52035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. A specially crafted malformed file can...
CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-52035
An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
UBUNTU-CVE-2024-54028
An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-52035
An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-52035
CVE-2024-52035 concerns catdoc 0.95, where an integer overflow in the OLE Document File Allocation Table Parser can cause heap-based memory corruption when processing a crafted file. The vulnerability is documented across multiple sources (NVD and Debian advisories) and is exploitable locally via...
CVE-2024-54028
CVE-2024-54028 is a memory corruption vulnerability in catdoc 0.95, caused by an integer underflow in the OLE Document DIFAT Parser. A specially crafted file can trigger heap-based memory corruption. Reports in Debian/Mageia advisories indicate fixes are available in updated catdoc packages (e.g....
Catdoc 安全漏洞
Catdoc is a program that reads MS-Word files and prints them readably, by the individual developer Pete Warden in the United States. A security vulnerability exists in Catdoc version 0.95, which stems from a memory corruption in the shared string table record parser that could result in a heap...
PT-2025-23527 · Catdoc +1 · Catdoc +1
Name of the Vulnerable Software and Affected Versions: catdoc version 0.95 Description: An integer overflow issue exists in the OLE Document File Allocation Table Parser functionality. This can be triggered by a specially crafted malformed file, leading to heap-based memory corruption. An attacke...
Null pointer dereference
Catdoc v0.95 was discovered to contain a NULL pointer dereference via the component xls2csv at src/xlsparse.c...
PT-2023-29966 · Catdoc +1 · Catdoc +1
Name of the Vulnerable Software and Affected Versions: Catdoc version 0.95 Description: The issue is related to a NULL pointer dereference in the xls2csv component at src/xlsparse.c. This affects the Catdoc software. No information is provided about the estimated number of potentially affected...
UBUNTU-CVE-2023-31979
Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...
CVE-2023-31979
Catdoc v0.95 was discovered to contain a global buffer overflow via the function processfile at /src/reader.c...
UBUNTU-CVE-2017-11110
The oleinit function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service heap-based buffer underflow and application crash or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer...
Debian DSA-575-1 : catdoc - insecure temporary file
A temporary file problem has been discovered in xlsview from the catdoc suite, convertors from Word to TeX and plain text, which could lead to local users being able to overwrite arbitrary files via a symlink attack on predictable temporary file names. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2003-0193
msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names "word$$.html"...