Lucene search
Veracode Vulnerability DatabaseVERACODE:28459HistoryDec 06, 2020 - 4:41 a.m.
Arbitrary Code Execution
2020-12-0604:41:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
arbitrary code execution
remote attack
tex file
cmdkeywords
funct1.c
EPSS
0.041
Percentile
92.2%
latex2rtf is vulnerable to arbitrary code execution. A remote attacker could execute arbitrary code via a crafted TeX file due to a format string vulnerability in the CmdKeywords function in funct1.c.
References
lists.fedoraproject.org/pipermail/package-announce/2016-April/181276.html
lists.fedoraproject.org/pipermail/package-announce/2016-April/181677.html
lists.fedoraproject.org/pipermail/package-announce/2016-April/181725.html
www.openwall.com/lists/oss-security/2015/11/16/3
bugzilla.redhat.com/show_bug.cgi?id=1282492
security-tracker.debian.org/tracker/CVE-2015-8106
sourceforge.net/p/latex2rtf/code/1244/
Related
ubuntucve
ubuntucve
CVE-2015-8106
2016-04-18 00:00:00
nessus
nessus
Fedora 23 : latex2rtf-2.3.10-1.fc23 (2016-b9368247d4)
2016-04-13 00:00:00
Fedora 24 : latex2rtf-2.3.10-1.fc24 (2016-3e320f369e)
2016-04-07 00:00:00
Fedora 22 : latex2rtf-2.3.10-1.fc22 (2016-246417376c)
2016-04-13 00:00:00
cvelist
cvelist
CVE-2015-8106
2016-04-18 14:00:00
archlinux
archlinux
latex2rtf: arbitrary code execution
2016-05-06 00:00:00
prion
prion
Format string
2016-04-18 14:59:00
mageia
mageia
Updated latex2rtf packages fix security vulnerability
2015-11-20 01:08:19
openvas
openvas
Fedora Update for latex2rtf FEDORA-2016-3
2016-04-11 00:00:00
Mageia: Security Advisory (MGASA-2015-0453)
2015-11-23 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: latex2rtf-2.3.10-1.fc22
2016-04-08 20:25:48
[SECURITY] Fedora 23 Update: latex2rtf-2.3.10-1.fc23
2016-04-09 14:26:35
[SECURITY] Fedora 24 Update: latex2rtf-2.3.10-1.fc24
2016-04-05 10:17:01
nvd
nvd
CVE-2015-8106
2016-04-18 14:59:01
debiancve
debiancve
CVE-2015-8106
2016-04-18 14:59:01
cve
cve
CVE-2015-8106
2016-04-18 14:59:01