CVE-2004-1297

Buffer overflow in the processfonttable function in convert.c for unrtf 0.19.3 allows remote attackers to execute arbitrary code via a crafted RTF file...

CVE-2004-1297

CVE-2004-1297 affects unrtf 0.19.3, where a buffer overflow in the process_font_table function (convert.c) can be triggered by a crafted RTF file. This leads to remote arbitrary code execution, as described in multiple sources. The OpenVAS and OSV entries corroborate the same vulnerability patter...

CVE-2004-1293

Buffer overflow in the ReadFontTbl function in reader.c for rtf2latex2e 1.0fc2 allows remote attackers to execute arbitrary code via a crafted RTF file...

CVE-2004-1297

Buffer overflow in the processfonttable function in convert.c for unrtf 0.19.3 allows remote attackers to execute arbitrary code via a crafted RTF file...

CVE-2004-1297

Buffer overflow in the processfonttable function in convert.c for unrtf 0.19.3 allows remote attackers to execute arbitrary code via a crafted RTF file...

RTF2LATEX2E 1.0 - Remote Stack Buffer Overflow

RTF2LATEX2E 1.0 - Remote Stack Buffer Overflow source: https://www.securityfocus.com/bid/11994/info It is reported that rtf2latex2e is susceptible to a stack buffer overflow vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied image data prior to...

GNU UnRTF 0.19.3 - Font Table Conversion Buffer Overflow

GNU UnRTF 0.19.3 - Font Table Conversion Buffer Overflow source: https://www.securityfocus.com/bid/12030/info GNU UnRTF is prone to a buffer overflow vulnerability. This issue is exposed when the program converts RTF font table data. Since RTF documents may originate from an external or untrusted...

GNU UnRTF 0.19.3 - Font Table Conversion Buffer Overflow

source: https://www.securityfocus.com/bid/12030/info GNU UnRTF is prone to a buffer overflow vulnerability. This issue is exposed when the program converts RTF font table data. Since RTF documents may originate from an external or untrusted source, this vulnerability is considered to be remote in...

unrtf -- buffer overflow vulnerability

Yosef Klein and Limin Wang have found a buffer overflow vulnerability in unrtf that can allow an attacker to execute arbitrary code with the permissions of the user running unrtf, by running unrtf on a specially crafted rtf document...

CVE-2004-0785

CVE-2004-0785 affects Gaim (pre-0.82). The advisory states multiple buffer overflows that allow remote attackers to cause denial of service and potentially execute arbitrary code via (1) RTF messages, (2) an excessively long hostname from DNS, or (3) an overly long URL not properly decoded. Produ...

CVE-2004-0503

Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media files via a Rich Text Format RTF message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow scripting and may lead to...

CVE-2004-0503

Microsoft Outlook 2003 is affected by CVE-2004-0503 due to a security bypass in RTF handling: lack of validation for certain OLE objects attached to RTF messages may bypass Media Player scripting restrictions and could lead to unprompted executable installation when combined with predictable-file...

CVE-2004-0037

FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages...

CVE-2004-0037

The CVE-2004-0037 record concerns FirstClass Desktop Client 7.1. The vulnerability arises from hyperlinks embedded in FirstClass RTF messages, which allow a remote attacker to execute arbitrary commands on the affected client. Documented impact indicates arbitrary command execution with network a...

CVE-2004-0037

FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages...

Microsoft Windows XP95982000NT 4.0 - Riched20.dll Attribute Buffer Overflow

Microsoft Windows XP95982000NT 4.0 - Riched20.dll Attribute Buffer Overflow source: https://www.securityfocus.com/bid/6874/info The riched20.dll is vulnerable to a buffer overflow that results in the application calling the library to fail. By creating a Rich Text Format RTF file with more than...

Microsoft Windows XP/95/98/2000/NT 4.0 - 'Riched20.dll' Attribute Buffer Overflow

source: https://www.securityfocus.com/bid/6874/info The riched20.dll is vulnerable to a buffer overflow that results in the application calling the library to fail. By creating a Rich Text Format RTF file with more than 65536 bytes of data in an attribute, the buffer will be overrun. Execution of...

CVE-2000-0753

CVE-2000-0753 affects the Microsoft Outlook mail client. The vulnerability involves a winmail.dat attachment containing an RTF file that reveals the physical path of the sender’s machine. Root cause: information leakage via a path in the attachment. Impact: disclosure of local machine path; no br...

CVE-2001-0240

Microsoft Word before Word 2002 is vulnerable to macros being executed automatically when opening an RTF document that links to a template containing the embedded macro. The root cause is Word’s failure to detect macros embedded in templates referenced by RTF documents, allowing a malicious docum...

Security Bulletin MS01-028

---------------------------------------------------------------------- Title: RTF document linked to template can run macros without warning Date: 21 May 2001 Software: Microsoft Word for Windows and Word for the Mac Impact: Run Macros without warning Bulletin: MS01-028 Microsoft encourages...