ytnef 资源管理错误漏洞

ytnef is a program that collaborates with procmail to decode TNEF streams. A double release vulnerability exists in the TNEFSubjectHandler function in lib/ytnef.c in ytnef 1.9.3. A remote attacker can exploit this vulnerability via specially crafted files to cause a denial of service and possibly...

yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities

------------------------------------------------------------------------ yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities ------------------------------------------------------------------------ Yorick Koster, June 2009...