12 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-9146
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allo...
ytnef denial of service vulnerability (CNVD-2017-09345)
ytnef is an application library for extracting data from winmail.dat files. A denial of service vulnerability exists in the 'SwapDWord' function in the lib/ytnef.c file in ytnef version 1.9.2. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer out-of-bounds...
ytnef denial of service vulnerability (CNVD-2017-09344)
ytnef is an application library for extracting data from winmail.dat files. A denial of service vulnerability exists in the 'TNEFFillMapi' function in the lib/ytnef.c file in ytnef version 1.9.2. A remote attacker can exploit this vulnerability to cause a denial of service memory consumption with...
ytnef denial of service vulnerability (CNVD-2017-09346)
ytnef is an application library for extracting data from winmail.dat files. A denial of service vulnerability exists in the 'SwapWord' function in the lib/ytnef.c file in ytnef version 1.9.2. A remote attacker can exploit this vulnerability to cause a denial of service buffer out-of-bounds read a...
UBUNTU-CVE-2017-9471
In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file...
ytnef buffer overflow vulnerability (CNVD-2017-07744)
ytnef is an application library for extracting data from winmail.dat files. A buffer overflow vulnerability exists in the 'TNEFFillMapi' function in the lib/ytnef.c file of libytnef in ytnef 1.9.2 and earlier versions. A remote attacker can exploit this vulnerability to cause a denial of service...
DEBIAN-CVE-2017-9146
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impa...
UBUNTU-CVE-2017-9146
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impa...
UBUNTU-CVE-2017-6801
An issue was discovered in ytnef before 1.9.2. There is a potential out-of-bounds access with fields of Size 0 in TNEFParse in libytnef...
ytnef out-of-bounds read denial of service vulnerability (CNVD-2017-02559)
ytnef is an application library for extracting data from winmail.dat files. An out-of-bounds read vulnerability exists in ytnef. A remote attacker could exploit this vulnerability to construct a malicious file that could be parsed by the user, which could crash the application...
DEBIAN-CVE-2017-6299
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9. Infinite Loop / DoS in the TNEFFillMapi function in lib/ytnef.c."...
yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities
------------------------------------------------------------------------ yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities ------------------------------------------------------------------------ Yorick Koster, June 2009...