ytnef: Multiple Vulnerabilities

Background ytnef is a TNEF stream reader for reading winmail.dat files. Description The TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service and potentially code execution due to a double free which can be triggered via a crafted file. The SwapWord...

Fedora Update for ytnef FEDORA-2019-7d7083b8be

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Buffer overflow

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...

UBUNTU-CVE-2010-5109

Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service crash via a crafted TNEF file, which triggers a buffer overflow...

CVE-2010-5109

CVE-2010-5109 is an off-by-one error in the DecompressRTF function (ytnef.c) of Yerase’s TNEF Stream Reader that allows remote attackers to crash the application by processing a crafted TNEF file, effectively a denial of service. Public disclosures and vendor advisories reference an embedded liby...