4 matches found
Mageia: Security Advisory (MGASA-2019-0367)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-18849
In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorizedkeys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup...
ytnef denial of service vulnerability (CNVD-2017-09344)
ytnef is an application library for extracting data from winmail.dat files. A denial of service vulnerability exists in the 'TNEFFillMapi' function in the lib/ytnef.c file in ytnef version 1.9.2. A remote attacker can exploit this vulnerability to cause a denial of service memory consumption with...
ytnef out-of-bounds read denial of service vulnerability (CNVD-2017-02558)
ytnef is an application library for extracting data from winmail.dat files. An out-of-bounds read vulnerability exists in ytnef. A remote attacker could exploit this vulnerability to construct a malicious file that could be parsed by the user, which could crash the application...