4 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-18849
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorizedkeys file via an e-mail message with a crafted winmail.dat...
Denial Of Service (DoS)
tnef is vulnerable to denial of service DoS. The vulnerability exists through a heap-based buffer over-read in strdup, allowing an attacker may be able to write to the victim's .ssh/authorizedkeys file through an e-mail message with a crafted winmail.dat application/ms-tnef attachment...
Updated tnef packages fix security vulnerability
Updated tnef package fixes security vulnerability: In tnef, an attacker may be able to write to the victim's .ssh/authorizedkeys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup CVE-2019-18849...
CVE-2019-18849
In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorizedkeys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup...